Analysis

  • max time kernel
    2365949s
  • max time network
    139s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    20-12-2023 05:26

General

  • Target

    876eeb5d4435bf1ffd84e21c625f013d64c754dd03327df047b6ed4fc6bc3894.apk

  • Size

    3.5MB

  • MD5

    c81f353a8448a9d4bbbb2aa5e3dce872

  • SHA1

    5fd74663c8b3c4c40a0130109d8c48576910ac24

  • SHA256

    876eeb5d4435bf1ffd84e21c625f013d64c754dd03327df047b6ed4fc6bc3894

  • SHA512

    46d732941659d36ec2040e92d3d1a36ed4fc729591c3f61ce2bb62d0c11d62d111ae66eefc7c7c120aa0125cbbce50b29570c246963e449de91fef77324affbc

  • SSDEEP

    98304:Pq96efffnRcj7jGPJqvZzsX5EOOzvf6Im:PyXcXgIZ2GlzC

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.

Processes

  • ir.shz.shzkisi
    1⤵
    • Acquires the wake lock
    PID:4612

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/ir.shz.shzkisi/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    bab9998e016215f8b21804ea7b10fa65

    SHA1

    2f6eb1fd0a3ba19cab72996c41de3b5247faf530

    SHA256

    de5e64d29ae17d1c65125d9fa49a55042bfbaf961f4c4cce653ff8a57baf4dee

    SHA512

    50ec9a2933f9bb99922ea4584cb400812f627dce32883ef7158f78a9dc98d42c529a806a0276bfc53fc0a369c5e45d58dd09b69a65ee6554d8907da6990deda3

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    166f477061d89f70d26e2c13f465455f

    SHA1

    fdc4b7f96e464ab277f34f847dc6b8f3bfb5c5d5

    SHA256

    9eda4815ff16c1d42716970edb70d7cf7a6e63d5efb24473253c208d774c685b

    SHA512

    49ad0dd86631e04ba7f83893c2cec746637b69c4700236efed8d866c5faa97355b3239800c708c0410a56728f6f374e8eea026b1b1332783b94814d732699849

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    c2275043109d900ff673e1f5bedc2284

    SHA1

    609eeff8384f0fe1561a97652c7644399b36a7d5

    SHA256

    69fb7f777c4c042108544dbdd2d4216aff7ef8899ac1317c78662ce74f8c61cf

    SHA512

    229b3123b009657e422e7eb850578dfc16a4f5741c12377eb182cdc0efc764496eacb99455eb5b3be16b79be08ad50c7aefa624b74a0776d172cedd5efdeabde

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    10acda3c8c3e19ced12298556ab7e819

    SHA1

    5ce09f1ba77a601da618447a1667ff1780d32a6b

    SHA256

    af6d30878827b2a0f412d7700e38780bd79c38526bdbe191bf6dc4d1a1dfb699

    SHA512

    18eb1dbec072a181b77f819ce0bbe06845c8ec9282f02faeb03ffe8bd6a49beab7a6180bc2cd3e7bc7e65279667ba7d825f62f956c7610bf1dceab47bae6b290

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    de82e2c94d2718988804b035a46d17b1

    SHA1

    705f5ff19093ad209f2a666085d6ccaed3bf58a4

    SHA256

    29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

    SHA512

    68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    73dde037d43818d6392e51665bee0446

    SHA1

    79d2b7aaad055aaa21aa371d61b05684c2164073

    SHA256

    d8aa44c8b932aa136e23d352f22689c2173c343125e0e7588bb111fb635b30be

    SHA512

    95c88a7ca75a3f60fc3715bcac6a0a0f67bcf8a3a9fde5482f15e8da321521faf184548fc7a31df3f6019c48214b97a683b9fd7d0d2b1bd5595e50fb5d80f4fe

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    9dc257827451bf875cfc32b690b66b6c

    SHA1

    66507bacecffe73d73ee848ef39adad11a9c4e8b

    SHA256

    2b5249fc49786652d82640c79617a8e2fe064be47865be6e7374ec5b3efcc0f2

    SHA512

    38578d17a2c15069f2b761f215f59994b1b8ed05d845a246b4f6c0eeea3dccfea26ee16be3242ba543f1859f40256f82d1f53bf0cbeff7608005f84e03afbcf2

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    b1d33ecaa3ac0747a3c5fdc5448dcd05

    SHA1

    916f497a7819f67c9e10b3fae3ece90da4959f56

    SHA256

    c4dfa94f8a396c102a48833fa88454ef0055cf57bc7b60cff58758ee6fcb4ae5

    SHA512

    bbb69ce35632f6d5a7488ed0fb430c21af12d7f72c97fdc913c77b37eb62f5d3524023731a4cb094f6a7a5c3bb7baa5dae4aa3fa155cd55b88ae900724416493

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    d2a39d945656b82e3ea3bc4a29fa3c79

    SHA1

    1a44d824a792e6cb6b0388dc830b550aeae33059

    SHA256

    e3a9faa7921cc3eabe7c4436a8b29fab334ad0d2a75e714dfaf2786820ae957c

    SHA512

    9ead5ceb490f979988c9e46fa5a055eef00950407fe11fd2ec9c6ac5bf90c20b0cc511b9407ab4c3edfa3f2788d47339837d00ab4474751608879d341634c0c7

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    a1968a9948e334fb7233ad90029845fb

    SHA1

    88f0fa890a696c6bca8dda94e77631b476498c89

    SHA256

    89512546f414605476b2a5476213f0a8feb0e0055de211ed30d63ad9871da0f9

    SHA512

    b4fe3657b5c1aac5ed44b57f688abe4447b97af0dc7de0655f158a0fa829c466f8208c5af2b4496e8038896458c7ab3dccfaebb7be25eefc564374767cba8498

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    817507ee7c2b03e259d440aa2b2553f8

    SHA1

    b154b7f5071125c9d1279f8e8b09e887d9125a98

    SHA256

    b8faa00a758ff140c6bac1ed2881355a2f28c55f5ec121a45bef0c628adb7ad2

    SHA512

    ecbeea29dfaae87a3288c9b0c4785b546699f55c84c8054bed1ee28218355ef1f2b89bde299f038383f7ba42f7a82dd6b27125a26c7e274eaddcc2d446169db6

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    4a6f9cd49016196cd3e3675e7bf06a5e

    SHA1

    eec68c186b53fbe6df6caa5076308cbe7af60e2e

    SHA256

    1509d06cff1ca7eb76f6895384b1fa1bd023f085de095ae50a5d2869e686ca0a

    SHA512

    97b6d3cce7bbef89ca4cb65d7d844a1eaf12caa0bc1ec11ef54dd4688a6db19705315de248c8e340f125dd61a234009e9bed285c7d878cea95eeba02b5a4d646

  • /data/user/0/ir.shz.shzkisi/files/PersistedInstallation2860960252462917516tmp

    Filesize

    568B

    MD5

    108db1b50ac027ede62ac79a60d1d58c

    SHA1

    7cd1ecaad46920690610369bd91632066b2883b0

    SHA256

    907d473a705aa8b37892dc21f2e7012d1776634e212a49cc462b1ce45d6708a6

    SHA512

    b0d3fe67947bfbd92bb6ab42826c081ea997e0bba827fa3ef753447451a3b2565d585826ca4d8430f40a9306b3151e7d2f2ed6319ea2f92ea6c1a63ad6230144

  • /data/user/0/ir.shz.shzkisi/files/PersistedInstallation9069708751961666845tmp

    Filesize

    90B

    MD5

    3b76ac346da307f4217431866f958052

    SHA1

    b5c23c435ee8a4599c6a12e996505cb3990b1efd

    SHA256

    1db52fad5ee0be95858eea64544cdef8971f4a8f45eab184e827528aa2baaa59

    SHA512

    dc2871b8dddbf9a1a574fc877260807eaba78b1f688bfe4ded0f90856fed387dee9bf7b8fdd2dbf50a33bf1ffcb4fbcf8510bb10d1386449ab1f4193c0c7e971