Analysis

  • max time kernel
    2317262s
  • max time network
    154s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    20-12-2023 01:32

General

  • Target

    78f8f0bf0641079e3dc8444588230292daf9852d3b452f8214e4ec222d40c3e0.apk

  • Size

    3.4MB

  • MD5

    fd5dd66995d65443d1b3098d74190ea5

  • SHA1

    69e8e2ffc45e444ef32bc9afa24184f8a53b71f8

  • SHA256

    78f8f0bf0641079e3dc8444588230292daf9852d3b452f8214e4ec222d40c3e0

  • SHA512

    439666ec7f5390e55cbeef82e2ce68228986a97605554771ff0996ebecf7b9eb7ecffbe30892f9c764a8ec1087eb3eeb73c56b6c2e18fb842a642ed2c1bf1eaa

  • SSDEEP

    98304:0mPfOR1cASKE1v9QcV8uonFxo9lCgRb5skolm:0iM1X4138Zx2Rb5sG

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Requests cell location 1 IoCs

    Uses Android APIs to to get current cell information.

Processes

  • ashki.shirvakhavasan
    1⤵
    • Acquires the wake lock
    • Requests cell location
    PID:4263

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/ashki.shirvakhavasan/databases/__pushe_base_lib_db

    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

  • /data/data/ashki.shirvakhavasan/databases/__pushe_base_lib_db-journal

    Filesize

    512B

    MD5

    edead0a1084a8ba1d6e3a69ed45d6019

    SHA1

    c6b0e2c4b71114787dbdd589e4ce955496a03e8f

    SHA256

    a41baaed1d8de979e6cb82833ff83b05c44453733a220e6ea6c0c9e8c51e6513

    SHA512

    13de89c1926fc11fcf50b29088b935976bcf0eddbdf9b2797b9fe2bddd87f50844e9e1556990e733a662f0ace726854c1402896d022d46b648a384d97b20c478

  • /data/data/ashki.shirvakhavasan/databases/__pushe_base_lib_db-wal

    Filesize

    36KB

    MD5

    14410fc094182818dafe1fe0611000e8

    SHA1

    1c106147ba6dc2ad1a5393e6c34ab0ea93db9d7c

    SHA256

    a48cb45f7158b68212096387b092c60ac139a9d5d911d6189f75b2cbee7a5ca4

    SHA512

    9b53baa1cac1eafa6847625aeb5622ac051f6d945fb3935e772b949da5a0ee2d5a361448e1f961d3f43f9508cc260cdbdbd547436ce14b814d0df50c160cfa82

  • /data/data/ashki.shirvakhavasan/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    4c38de06309c2de906e75117506b5019

    SHA1

    4fb26d9fca6407ee629a493f29d85a2f91150fa2

    SHA256

    c8e91190aa1ab31f0ec7891b9cff4e97625bca987866a6a4db9dfefe4b5bb873

    SHA512

    ec63f418c7e1259a237ad38839b641856c5bfb8b800ed5d3a3a9d36bb9d7f5a594d090527e2431b1868a7089181e8250e4aace0e3991367f26e9afeb9cb47e30

  • /data/data/ashki.shirvakhavasan/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    72b244a4b17f10eb78c18c8787078aa9

    SHA1

    e05f17650d96fb8567d75742d1c0519156e277ac

    SHA256

    38ce86fcf16dcea967b4416de67e1e60696674def12a25acf51f723022326c52

    SHA512

    ee57c77af84eba76c1a46a5fc16dfe887894101c5805a9ed7310ce7662c17ebe839c3f7124e31ae785cb1a7145ec365465a3f19feb47ec3b66169160ecab043b

  • /data/data/ashki.shirvakhavasan/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    f5606e9735fd98a3fba167007a718dde

    SHA1

    6c0b02d44c79ebc80a6c30d860dff538f2acd812

    SHA256

    b99355e89a188aa2ee341646271916ccb3f50b0cadcbec185a3f352f38cf1e87

    SHA512

    b934e392a9d7feaa46dbd0dcacc5b59392443342ae8c31122feb518b7e5f384f77f705294f470cdaf8fcc6a0e3b8f044b9abc6cb86731297e7c7ca198b574ca8

  • /data/data/ashki.shirvakhavasan/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    978fdf85b8448e3a7c9015e51477eb49

    SHA1

    793bb88398dc9457935a4416638d5ed3974baf19

    SHA256

    8f72919eebbe45ed6d33b7b763d7e45d76a880128aee9aa5c29d28ab79689a92

    SHA512

    852b2d3e2607c96625e9bcd454c702ccec6a0f07aba3410976d6400ecd2d48ccc92d93c8ce7fcc87a622d04357bd6805a996f11d339ca7fc3eab99c0e991fe38

  • /data/data/ashki.shirvakhavasan/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    765dcf5b258e6ffe1c81b9aa35f7f6f8

    SHA1

    414d26deeae891f9bdd6c9f277975c353d1c39f6

    SHA256

    11bce6e8cd5d705336f0ac99e7ac6b1d7b755ace0bd0425849696c00be96399e

    SHA512

    5971cf2d62f4eec4161db1cdf2ef54c5ad704bcaada02988e3faef275dec7725e820685db26d38a1f6bce47d4ba2e9a05207d4cc93c95f085069bfcf82bcc2cf

  • /data/data/ashki.shirvakhavasan/databases/evernote_jobs.db-journal

    Filesize

    512B

    MD5

    cd3b65423cbffb43994603aed02a56da

    SHA1

    f803ed58604761bbc0e71168048166987689735c

    SHA256

    1027cedece0e2be9beb432ac504361f6215abc9f2ce73b38c1ad5eb26396591f

    SHA512

    b307e4d0ecc049e1d675e98b413ad53a79c93aa2324c6cf49b2d5b8ee8d96484cb1fb02c0ddaa1ac991dcdb78a2e55b54fee176cff7d54073f7764d81868f36d

  • /data/data/ashki.shirvakhavasan/databases/evernote_jobs.db-shm

    Filesize

    28KB

    MD5

    cf845a781c107ec1346e849c9dd1b7e8

    SHA1

    b44ccc7f7d519352422e59ee8b0bdbac881768a7

    SHA256

    18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

    SHA512

    4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

  • /data/data/ashki.shirvakhavasan/databases/evernote_jobs.db-wal

    Filesize

    4KB

    MD5

    356e49560302aca4dfb152e58dd539e3

    SHA1

    66904f1deedb86f0bb10aac6820692373e14b1fa

    SHA256

    85885a7504db7a761262fad7473514ad6fc9d641d76ad325a4f8faf0f6680177

    SHA512

    45cd08acdb95c368e629d39549327b1c8fa6eb035a57f56dbb83b2ca928e5759572c5e20ac9230a425a38116fd33d069d1eff3f7a93a3de410d1384c7f376c40

  • /data/data/ashki.shirvakhavasan/databases/evernote_jobs.db-wal

    Filesize

    4KB

    MD5

    0c93c82076e9d504e6194076c499c184

    SHA1

    832ae16617c78b9ab2e90b8f8f48cdfec2357454

    SHA256

    b2b023cf69b42672d78bd6d1ab011a632fbf746f72f0c2f7c79948859b8ed44a

    SHA512

    caecfd4fc6d9dfe11c9f4175e6b4c0450bafefc44fadde889bd0df151e9b711f6dd4b16e6a9571d657e366aba1680e7cda9801af25b77337c3343ee822e8143c

  • /data/data/ashki.shirvakhavasan/databases/evernote_jobs.db-wal

    Filesize

    4KB

    MD5

    bde4f201d85a01dbb9d30de026385f1d

    SHA1

    fc15fae92bfecb311d91d3d6c9342404e48b5a43

    SHA256

    2c8d7672172dd5d942b764a180b5c812b53d23b050f67ed855f0af32fcc39c94

    SHA512

    248ba1af37f3fccf8229fe9a18816fa155287b6544feb27d2b67c6d0b3c46b5ca942397bb4fc6761737cc7ebbc673d527e55b1753e3ad870c1f41ad8d1188f71

  • /data/data/ashki.shirvakhavasan/databases/evernote_jobs.db-wal

    Filesize

    28KB

    MD5

    46bc0e404d209efc3bdb1c4b871c7372

    SHA1

    fbe228a31ae21245b9bbe43800aa57a589057df8

    SHA256

    fcc8e59c2385a30f32bdffff2ce9cd54f30d2820e244f575791d1446f7ebd3ca

    SHA512

    f3c39e5ed3f9eb3b30e039595b87f3841f50337447b983885d864dfe3039af25bdd28130c45d16ce0dedbc899b8657f4fef1e6af4e86997a7471c0d4db1f1f73

  • /data/data/ashki.shirvakhavasan/databases/evernote_jobs.db-wal

    Filesize

    4KB

    MD5

    708c55cd08218304d4d778df6925ee24

    SHA1

    c632c54600870ffda9f0f63c877c295e9597290c

    SHA256

    d342a835077c0cf1692f9b4c98fc6ad315c448a093eb72eaa0e753cf67a159e4

    SHA512

    e347d6c1dab993ee282437aaab0625b1c1466e67ef05a22c46917648bc9e2f1488c4fa1c0712c163653f7f697e218c96509b0e990f784399f19cdbf2dd33554e

  • /data/data/ashki.shirvakhavasan/files/unsent_requests

    Filesize

    58B

    MD5

    0d210bfb2a0e1f1b4c082a6a0f79de07

    SHA1

    bb8ed9e364db79d1d9f2fcde3f15091893222faa

    SHA256

    988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

    SHA512

    536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1