Analysis

  • max time kernel
    2289015s
  • max time network
    151s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    20-12-2023 01:32

General

  • Target

    78f8f0bf0641079e3dc8444588230292daf9852d3b452f8214e4ec222d40c3e0.apk

  • Size

    3.4MB

  • MD5

    fd5dd66995d65443d1b3098d74190ea5

  • SHA1

    69e8e2ffc45e444ef32bc9afa24184f8a53b71f8

  • SHA256

    78f8f0bf0641079e3dc8444588230292daf9852d3b452f8214e4ec222d40c3e0

  • SHA512

    439666ec7f5390e55cbeef82e2ce68228986a97605554771ff0996ebecf7b9eb7ecffbe30892f9c764a8ec1087eb3eeb73c56b6c2e18fb842a642ed2c1bf1eaa

  • SSDEEP

    98304:0mPfOR1cASKE1v9QcV8uonFxo9lCgRb5skolm:0iM1X4138Zx2Rb5sG

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Requests cell location 1 IoCs

    Uses Android APIs to to get current cell information.

Processes

  • ashki.shirvakhavasan
    1⤵
    • Acquires the wake lock
    • Requests cell location
    PID:4595

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/ashki.shirvakhavasan/databases/__pushe_base_lib_db

    Filesize

    24KB

    MD5

    2cdf77d5c14dd3f313b60c691579a0b9

    SHA1

    6a74a7a3170cabead82152871c90749afdd6f310

    SHA256

    55ba022e5aa9eb87c256026289112e4c0531a41d0d56380fcf845de71ff99ca0

    SHA512

    eaf21f0acf8b98ac8bf4bce81e66a07d6a501483b141bfb7a2ef476a8dc9927ccd39971f4e0d1f7969576dbf7abb7befb3bec04e40c5a9b28fa7a2f15ae7a98c

  • /data/user/0/ashki.shirvakhavasan/databases/__pushe_base_lib_db-journal

    Filesize

    512B

    MD5

    c996140ae870030bd0bc87f3b38e370c

    SHA1

    7d75294927221117b6f420dff155b5e27de0630f

    SHA256

    c71e94b62eb194f81ce3f2859e5b3f778430a276f900772f90f2bafdb0169046

    SHA512

    37380df701fcbf0b86cd86392b0de19e3b6db34fe4b0e87d7b503200580ba87b6b5677a993ef42f421418b82e2f99574262c18f73f15154f839ddf141e5c62aa

  • /data/user/0/ashki.shirvakhavasan/databases/__pushe_base_lib_db-journal

    Filesize

    8KB

    MD5

    557976c6bba7db1deb514cabb65b4a8d

    SHA1

    6b5f9c61889c10b78a17e5b35487f8bb65d93c65

    SHA256

    acd9a7e3fe9e4761169b31d452f3bbc02c55be40448236db33a4b8c6fdc99a8a

    SHA512

    df765f7178f211ae3590f264d86451d46a0f1e401a015c27924e2622c06423800d2a7ff0c8a2bd2a2913af9cd3843c85398148ff0aed1e230f06239c652530b2

  • /data/user/0/ashki.shirvakhavasan/databases/__pushe_base_lib_db-journal

    Filesize

    8KB

    MD5

    436deba12095ca91e301b8559871d727

    SHA1

    614bf4fa93a9626357d2959aa0fe458d0b1be382

    SHA256

    c3fab95af70fa2f4c227cff0c7bd0bfb64069711b14ce1e0564bab2585b02de8

    SHA512

    72698e402ebd29ac555a85360d2c12113069616f103619ce5a4449d2e7c16b6777a2a2242687a7b4f45c54e69a7e60fe2894fae54c98d0bd7dcb62b7292f28ab

  • /data/user/0/ashki.shirvakhavasan/databases/__pushe_base_lib_db-journal

    Filesize

    8KB

    MD5

    54edd4becc2a08b044c57ac7d2021a13

    SHA1

    74dab806f214b337f1b014919879ed887ba84e16

    SHA256

    3699738720d30c7b557850de7b8823296b34156d00e06749acd7d73976896ce5

    SHA512

    9dbd6a5e9491b868b1d506ea8f1ffa644178e2693d34728a0f7767216b4e355dfc4e4ec5e58eed5a0a6573780f7c5594e06516e420631e915ceeb699cae6d15a

  • /data/user/0/ashki.shirvakhavasan/databases/__pushe_base_lib_db-journal

    Filesize

    8KB

    MD5

    735b39f7ba4bd2c1bef1c6ad90b67636

    SHA1

    6d4f31cc20628a8e1ae163aa8b38d20266ab2fe1

    SHA256

    06b0a9233bde67de50c124b341c180c98162d82a0d4fa1c8c610774ef10bff64

    SHA512

    deab35c20791356ed16d145a53ac335b83e336510861fb91a6fe6133a4e25b1a9b20a9135d0438c8fe9459639c10a671b818b36dd80b4634318b700b26450696

  • /data/user/0/ashki.shirvakhavasan/databases/__pushe_base_lib_db-journal

    Filesize

    8KB

    MD5

    6db7ed124b089f097be2ab53a599e0ae

    SHA1

    d1968a5bd2f5689da80cc4f22608f04dae15bd4a

    SHA256

    44c6abda409e73b6c8db166c5c8863fdd4e114497fcf61c8f63abbfd4b623bc1

    SHA512

    ace58e0ffc2254921e73117e3d55e8a284a6d359ba6bc5a97be738e7c532f290fcda0a7ac8de76535aea1a9280e0cabbcbd99b427cc019371093c60c55ba76c7

  • /data/user/0/ashki.shirvakhavasan/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    600e4f2775725a0e2c84f74d93a52e7d

    SHA1

    df412effa42e9fe04d3ccf165f503f9938c70c5c

    SHA256

    6b72e5054f70e03658b568ddda87d3dfcbe6aa55ba0fa3ca2083b4b6d444b44e

    SHA512

    8851214768638bf33260bc4a4dec06ace57a2250de6a4c2f228e804fdc1cef2aecd9ef56696f1447280b4619d35ee779d0cc6ee8467d4655509a20f57c408806

  • /data/user/0/ashki.shirvakhavasan/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    0634df3f2dbdd5bb9b1173a5629e6136

    SHA1

    e4a24f5a4de667e7badedf168d9753ea7857ef5f

    SHA256

    f6c581532a6fae6018531bd46baa7d70bcee03d72c2096700eafe6fce849bc51

    SHA512

    48725c38c963242a47da2cff3ff94b4537475d57c6835fb0d1045606b2493d0778c82dc3c7872d8b7fc738f75733e922815e7ff012212eb8a2c1f8d7fe5bdb6b

  • /data/user/0/ashki.shirvakhavasan/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    1cdb59ad6dd29dc1ca1d5d7cfbf78448

    SHA1

    a37e39a8bb0d812c30e888d5d5a7027771deecc8

    SHA256

    4caaab96c0db02c3ecafea3f406533bc6900726b3d95d0ad08dd7a45b5094913

    SHA512

    521dac17cd47b68388e439c9c14efb316f99833de563c02abbe545b06dcdd96d5bc1e0bb8c2b52af6bc0f50aea81b7cf6b02891f26484ed0f9e1b96a85030773

  • /data/user/0/ashki.shirvakhavasan/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    67520de689bd4d9be7346242282ac0f1

    SHA1

    050f51296356d8bd2cecb9036fed1b1d53e782f7

    SHA256

    4da94fc2136ef773f5aa543dad56ab8c168d23c878c3a2f46af60f9f8d8ca5a3

    SHA512

    f171b5fd117a461864a6e7ad0ddbaa6f1d56e2381a8f21567aa5bca236830459ed09d44267a33600d56af930ca165bb7097f54b893d4206ef321cb12eeda2859

  • /data/user/0/ashki.shirvakhavasan/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    520b324339bc541aa166437776f8f844

    SHA1

    09bbf459c4102a341897b2d227f3b99fd5fd9f60

    SHA256

    fa1f4bfd86170104b8ead147da53735afa2182c930878f98740a4c1f0f20ebca

    SHA512

    4d91fe84a338671b1bcca164790faaffa8d2029478354f26bdf7a693da1f62f89926e0a34637d664f48afe2b1cf9647139065014f8b71db4a923d575bb571ff1

  • /data/user/0/ashki.shirvakhavasan/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    38b23345750885d8c992962e51b3ee97

    SHA1

    0ba73c2fcfd17ea76dcf2fd193b8e28fecf6968c

    SHA256

    13fa023c4825a416e9402a9a5562748a0ca35d398cbf8e25be6117804a6cdd94

    SHA512

    7653c4821c5de9ebae4c810d83cdd50ac455058f9144c3fe9b11d07963acd4cd9d2d3ca2088e408fe64356ba904b84a6ec72458c3ef2c664880e85750535c32c

  • /data/user/0/ashki.shirvakhavasan/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    388141a1f322899c06ef023f61f50601

    SHA1

    a929972990617ff71181dd73673f155bb1e07327

    SHA256

    00665f3566497e9d90eb762becc078e283e99a277adadde9320387ef58338615

    SHA512

    ff59a0db8306c9b0c432d5f4edce905d4f473fbba1042e01c292677ebf23ee83daf8022b5e2a1050c7962f5bc14d4f25f32b89a88932f0ffa9961358e9093d79

  • /data/user/0/ashki.shirvakhavasan/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    efef0121f8d41efeddae61ed88d7f65d

    SHA1

    08604fe590bf23efc173654b7a8ead8f7abcb3b8

    SHA256

    bbafa644314ef3ba524e884e55ba2275b2136cadcb8cc4eb0d3b430a23368244

    SHA512

    cf5b53e5df7e69ff2fff2b51b133b114414b8a1ce483798efeb80a053f26cb08cb5e1e4bae95ca36e094fc6f5870f76875a27c23b4e60cb70af167b700a65570

  • /data/user/0/ashki.shirvakhavasan/databases/evernote_jobs.db-journal

    Filesize

    512B

    MD5

    6718ccdc030143273ddbb815e2271e03

    SHA1

    8dd658bc7bd18f789c49e5e221735f9dba144367

    SHA256

    36543cfce99eac4556e6b65824ab382218e01e440f78c3617451cff6bbe52607

    SHA512

    b3d602323f14460394cdeee33ce73dc164c0dbc213c5d6808a8b010b2cb510965022d9fa5fcd0d1f5593176f12d7e9c608ed8471b83590a4210ea8a894f0f015

  • /data/user/0/ashki.shirvakhavasan/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    9d69851b8ff14c288cb67f856f0cc75a

    SHA1

    0a4bc80ad73894f24ae2773a7524c028d6f8757d

    SHA256

    0ca5491feddf6619d0ec76cd31a86272b4f4091c84be6d89b5b6c1ed4edd7909

    SHA512

    7d434374b510745b4094f7e28d26545f6b396c9b87ef19553b78d1e309cc78184a939abe7c8fcb564d36f86b949d5a4b82ac0f4ea324f83db337e7aaf44bdd0f

  • /data/user/0/ashki.shirvakhavasan/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    844142b8fa38b53267193e4b8a43e54a

    SHA1

    bbbac503fd2417b62ede346f46d6d65e816c65ab

    SHA256

    70229520ff681233d6f930b8645823b282fe1904427060d5c8357c582096f15d

    SHA512

    a8608d525f7b88101bcaf78d5204a482e8edfb3e677ca49974424b4dcb648388456049d29cb3949155069a96af389c657dd2583fe1aa4dc0dcb99ddc02f3ef5a

  • /data/user/0/ashki.shirvakhavasan/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    f43accab365fb0a660bad245302000eb

    SHA1

    bb5feaf760a741025b2797c927fd816a78e0ebd7

    SHA256

    8ed11bba23c9f55e69432c7c851f7d2c6e266066d388ca722a494ba72cdce3b7

    SHA512

    9f58ed3b08b3491de6e5f4d7982bfd3fc86f44c9cf5ff45acca738ca042277b472441fd18268670c1aeabfdfb95f791b5be45d657476d81af2c75ff7168c3e99

  • /data/user/0/ashki.shirvakhavasan/files/unsent_requests

    Filesize

    58B

    MD5

    0d210bfb2a0e1f1b4c082a6a0f79de07

    SHA1

    bb8ed9e364db79d1d9f2fcde3f15091893222faa

    SHA256

    988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

    SHA512

    536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1