Analysis

  • max time kernel
    2269806s
  • max time network
    153s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    20-12-2023 00:19

General

  • Target

    73aa7241675739ae3b789413223280322cd8fd42333136de8451b5cbf429d00d.apk

  • Size

    3.3MB

  • MD5

    f08814963f369f226ca14b1e723c086d

  • SHA1

    d227bbd22a7cda76eac52b8efd82475b29d7483d

  • SHA256

    73aa7241675739ae3b789413223280322cd8fd42333136de8451b5cbf429d00d

  • SHA512

    72f929a59d16daf7a60b427af8e968dee4e4f1fadb40bfedc0c593f3a2e065839dafe499f7d4d159266ceb2a69a6d129beb3ba893a5f24c8f1a54026ae2ef573

  • SSDEEP

    98304:IEVF6aL7fDW3v0AMYfccAHxAPaMWB0dXQPs0aUGfxi9k:I46x3vKcAH6p30aVk9k

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.

Processes

  • ir.shz.shzkisi
    1⤵
    • Acquires the wake lock
    PID:5059

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/ir.shz.shzkisi/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    d9b6d6eb7b163912d2aa84d94f809921

    SHA1

    5a9dde40c620a8ac3c2c50d12e62aa8d8ae57b24

    SHA256

    6d7738f0b781b1c5c0107dd5cdb60843dd910fc70664acd94a6468f293558925

    SHA512

    d8363958f8297a4cd18b2722ec5f2848b6cb52473fcd9d97206c02db5767803cbc1e2c9918531c67cd9d426a93914d67abc1d180652ad1a9af7aad73c42d6ab0

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7fecf84ac0619d8c62bbaf6df7e98647

    SHA1

    18410f97528eb46f651ed7e011ea3845913b3d31

    SHA256

    e3b1da4886d132ea738f42f4a1a4994606b693ba8be13a1099d08006a37ec3ed

    SHA512

    9c9a12c085cffe7cb2e3d9d81b794fdecb276d83dbd0135f2da0a7c5ec627120c826a98127910857e35d28530d0cbfabd3f6906dbc78e5d9829d779e0515b029

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    fa37bc1253ce8f606821d88811c20709

    SHA1

    3bf8e270ba1c3dadacfd9eeda79f76b4de9b6481

    SHA256

    b588d6a23c4aadfcd091857e67f6a88e77c0bfd29e59045b4d2e002ff2451dd7

    SHA512

    76e3f5a766009c8cddff042b54f71d042c2510694c363c9ced15600ae4803a24caf4dce7ca71b909ed37861bd3512230fbb5ec3733c27c9a191af3a69964a9ac

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    ea9bf9415a33dddaf0c76f30a2f75d5c

    SHA1

    0b571d1d6d534a288046554b5004f9f11c1159f2

    SHA256

    e83fe37e4e47b49ad7bae2d346ce311ebbdb7c19cef1893b4cd70f5656f68779

    SHA512

    4f9ec39083aa4712ac44dc0932355357746dbde0c92bc61afebeac7b2cdd275777447ecd5fd301b0703389d4c6aa3107ad5468acce0956a785492d24c4bd4576

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    eb52a90bb70b76e946b62f50b6f7fb85

    SHA1

    42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

    SHA256

    48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

    SHA512

    b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    0c31ba3fbc244fd47949bef01dc8cdd9

    SHA1

    a569c9292a42a10f7c701f7104dce5d2b920a486

    SHA256

    965bb4275b5f906f8cc388647eb7767e4aebfb0fe0e7b990c1b85c172d8243f2

    SHA512

    0c0fca041c70ee6825abca9d4a86c7064c36b3958d91edbf18d131846704dd7072287d3c56d3069a1f6a57394f64d9b89b7b361a16376f0a9ca28b8f94bcfb2d

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    3c04f101518ec1b6e31198e9db46364d

    SHA1

    38673e10828bc32f3bffc46505087c2ed7755a66

    SHA256

    c9e4898b687776d2a49358fd6aa7c86b8c4229e572441a8025d1584e781aeb00

    SHA512

    dd787684b05c77b25acf6cfc213affee9aafb66623204e4501e82caf8b7033eb52c53dfded0947baa7fe7aae00f23ac53442104f16f48a9982cb0ae0b9fdcbad

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    4da3cf9c57c31be402f14c4935baadd1

    SHA1

    bf716f33facb2eee16cb9d901cf578794ac9db56

    SHA256

    d4d332165db3291b33a28adf8f34567fcf9850094ae1c55faf358390e324d49c

    SHA512

    63ada931f40f053042e6c08112e8969428f124959c92f364a84acdcee66830b72c603189f47aa81a20d66c1300543999ef6d5bdc2d4ed71d32c1bb29082d4927

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    b1631bc428dbc3d98899e938fd1a8b9e

    SHA1

    592c8445406c0dd7872db2a181425b99e3c0fc25

    SHA256

    a3abc7320cccebc530fabcb38c8ef966720e5371658e5140d576622a776e92ad

    SHA512

    165bccaf8bdb42ef7a059e558ed9bfdcc483da32dd71f3af5166e70ef7903ea53ae5b68a22bdd6337277f70469155352dd9cd1595b0a7d93e1b9c1629cc2e337

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    29dc264b3f2fb988ae6be7e3742d1277

    SHA1

    07afd2abadbb47c12493915240ea8eb246c4d258

    SHA256

    57d147559ab347649a8bb7257a18d9fc0cdbd23bea5328b9eba22143d586f052

    SHA512

    0e15cf53865a884855d354f145e6cd5c43a354f48c059693f201f5ae44d8d476aef9923c445d56373778aeb0822d2d49e13eec9af641dc60748e149699148c34

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    2cc96ae4d58464b9d5212e06e78957b6

    SHA1

    9b043e08ddcc6bf19c0cf169bcaf84341b9cbd62

    SHA256

    23120e0cafb21fb50dd63a70ef85ec964783706d579adf13182e4ba00a69b47e

    SHA512

    89b71d9c97b8e806f9ff487f8466632d6ed617093ef795fb430cce89bd93210febd106467db153acaa4caa7adf587c83248c5a0b354fa62524427dba5f9d70af

  • /data/data/ir.shz.shzkisi/files/PersistedInstallation2452976321891243247tmp

    Filesize

    90B

    MD5

    747487af9e07110914abb9cf101d6dbb

    SHA1

    bd89b9308c94afc61500594cd118212141597a11

    SHA256

    50a4b17943554b08a00c48a80042aa61bfee9dba6ff77deff148e05b47f6d436

    SHA512

    91d097e55fd2975fc79983f05af83ed4100fe353b0de2cc90ba6fb5e5fbc1ed053342da1f6ff241ba35ddf0acdb44aa6e53486e57c6143c52a8697b29715f6b7

  • /data/data/ir.shz.shzkisi/files/PersistedInstallation3771171985417464790tmp

    Filesize

    570B

    MD5

    8f5481782b938f049315416eedfb18b2

    SHA1

    1e9e4889e8fc79f2ab31333962e6ef807a23f82d

    SHA256

    41749381b23c7f12a512058c9322ebb2f6fc3df29349c5f298ea36b8cee022c7

    SHA512

    c8db5885bb44a227245d0c42a6cf6e05efa13c23f2f49b438afcebc4fb1b1b391a79f58d7e18f1bae7cdbae320cc24c7285dc622bac7d8dcf546bb1ca632573d