Analysis

  • max time kernel
    2367624s
  • max time network
    139s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    20-12-2023 05:33

General

  • Target

    87f30af436938f2a776e7d2020457ea5599558e401a3389faaa8b5414e6e2721.apk

  • Size

    2.2MB

  • MD5

    a492cf1a84c67ed311f4f519082956be

  • SHA1

    0d9150161259c752b6dcafe21e6f501582ae1625

  • SHA256

    87f30af436938f2a776e7d2020457ea5599558e401a3389faaa8b5414e6e2721

  • SHA512

    466a36c13465bcbb72faa070b41fd0f2b7c54abd899e262b770df3a4bd6c4394a60b7905df9deefea066bfa2df113f5082b09ed161a7ae2c244ec1c68a9b1f43

  • SSDEEP

    49152:yvg1pMZjfr8sTD1ht9YktvhgiYqsm9/4jO8qXO076Fpf:yvgPu3rTDd9Y6yqsm9YeVu7

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs

Processes

  • ir.stop.devsalmedime
    1⤵
    • Acquires the wake lock
    PID:4620

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/ir.stop.devsalmedime/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/user/0/ir.stop.devsalmedime/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    b1f3d841354ca66afe99c34fda53c400

    SHA1

    7cbd4b5b875e774aaccfc14587d5759db1ffe416

    SHA256

    7bd7e4bdd0d4836727fda0b239b9ae2d22776c6fbdec6e7c7b3c8dd0286ebb3c

    SHA512

    67f1b13b5cf4fe103c921f37187d8704e6f4a25ba09bb47fcee9743f9fc81e95233f4e2e5fe1c5058b97089e1fb2de4598d939477189a12c716622c2dd69ca00

  • /data/user/0/ir.stop.devsalmedime/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    5b22398585fbd1a9147625b95bcea08d

    SHA1

    b3bf58d412c82cdf75bc15fbf3d7bbfc574be94d

    SHA256

    475018892d5cc3c543a9f8c1a52a259a4a7154144d5cbe238e479665d87f5692

    SHA512

    d623b5be9bcc79b9623e7bcde6cabbd6e634a3e14f3be3e52959c56784b8119b436cc686527378c05edea8c049ca0916e4b3486e878ada5c727b84d6748eb9f4

  • /data/user/0/ir.stop.devsalmedime/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    f17284d2f571e7291c818f3159229f6f

    SHA1

    e4af4847b3f6703190c038759017ef2aff74f056

    SHA256

    febbe4286d1f26ceac6ae424a14859c2637fe4692ddc52edf61fe4b9962b3ae1

    SHA512

    7cbb8d5c15a99846092b759426c63314a7da6f6aabd9b93a07f3ee073afe4b4efc8ee86efdd6343aa9e650370c415051b561df2798050f42340ecb8e71fe6a73

  • /data/user/0/ir.stop.devsalmedime/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    de82e2c94d2718988804b035a46d17b1

    SHA1

    705f5ff19093ad209f2a666085d6ccaed3bf58a4

    SHA256

    29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

    SHA512

    68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

  • /data/user/0/ir.stop.devsalmedime/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    d9cf75fdd1c2292d986f6c3d5d60f2c8

    SHA1

    07ecb1d3a26d952ae5fecf54f36699ab498510b1

    SHA256

    2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

    SHA512

    442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

  • /data/user/0/ir.stop.devsalmedime/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    9b7a165649e04c7d380438b4da122e67

    SHA1

    d79ff0e1228ba071f8921e6fd9653726e2f74607

    SHA256

    6e10feeef9e5ec1fe89f38416f18dffa2b9dd80130416b69e4ba5bb15115a72a

    SHA512

    b79ca3228e4359a967f2344de468589227cb4acf0182b457b041e6a5ee233d2e5261d1ee1f23296d5f13965f2984b927dce3180c6df4f73983de388150d0c273

  • /data/user/0/ir.stop.devsalmedime/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    81a892a0b521df06077dde9c44f47b6b

    SHA1

    d8f51d863da761df2ce96f4b7c00b55490827b5a

    SHA256

    a002233dbe4e3bdd809fadeab91114481d19285a9d65582950028d295bfad2d5

    SHA512

    225368304b0b780ce3c9170194d46e0aff4ca87c58b043f2a773e341f859bdae631aaf2b70f0ecbdee7fa4c337f2c19fea703af307e8bba0ab1c74224a39536a

  • /data/user/0/ir.stop.devsalmedime/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    f1eef4456c694bf025c6602cb6292cd0

    SHA1

    ee6402c93eda4a5070c3c2b1a049a3b9ed56b285

    SHA256

    0ff000108a7a20baf1ba2dbb458c0f413f9494985a993fd57f4ae9827676c1b8

    SHA512

    5798466e03c16402c7111c4eb9e563715c100906bc578339c3b7665dcec15193f5c660ba973dddc8338f477a67c942fc1e791141e35b053c3da5ad528ea09312

  • /data/user/0/ir.stop.devsalmedime/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    ebd8ebfb249a0e13ff12c1e8d3237f93

    SHA1

    a4b3c0e8487da366429f8278da6854161729cc53

    SHA256

    d7c4cb5e8fb235c850912fc3b525f6b3edb05a5602930d22e4796d8e054c5db8

    SHA512

    5e9dc6689cec8f46e78e29bdb373228c77d159fd7051e5c7c0b44eb9c84ecffa5b16529edd5e8dc3fc33dbe9482d3b21ae6a67a6f1a756aa55f405ae12c90e4e

  • /data/user/0/ir.stop.devsalmedime/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    7327729bc929831a08cf4783461a8111

    SHA1

    e4b326d83b9a621de1c65a48db95a8bc67dc737a

    SHA256

    97be80c2d632ec6decbc4afb18d9fde90859e135fcff855461dbe13354500f42

    SHA512

    445cb40ced1a1c31f59f502701b4796a0a9ee6a87770ea53823c40840caffeda37651c582e557a7d381d8df8dc4b3324d3bc369525c7275f6f607ae2a62083dd

  • /data/user/0/ir.stop.devsalmedime/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    abe66d62c9f7a4a72120e74b4da25661

    SHA1

    28867b93ee0e9c054512e0bcee46a9c52721823c

    SHA256

    7210533ad4c12d5b927f08c841fb031fb6eda9879ad6494dd77b94236adcf678

    SHA512

    784c372dc2c069a0d56dd36b6a4e624962c0d7289802166d34aa249aaff9ea5dfaf017dc3c8c5eee253a0157ad5972df7e59bb6a26db58b2d8f65fe0f2080756

  • /data/user/0/ir.stop.devsalmedime/files/PersistedInstallation2016176232205025532tmp

    Filesize

    90B

    MD5

    0b7cc2c869fd957bc6485d1eb95e44f3

    SHA1

    9cfb53e364838412eea026dbb25b466cd6c24727

    SHA256

    3c1da527bb1fd699cc4ff15e393897bdca920edfad579af788924154d0fb47c6

    SHA512

    850b6dbbf6fd88bc4b9d7eff1d52710b1feeaf851772e01ab5552025e63552519881c68751057aa3fe48131afea6b5b581c179ab8f5d9696da0fc4e786fefe67

  • /data/user/0/ir.stop.devsalmedime/files/PersistedInstallation6775005264479175643tmp

    Filesize

    569B

    MD5

    732afcbe94df1162a4cf55c7ef309247

    SHA1

    d192778fd6ad8fd9108027c301518607a45e0173

    SHA256

    b2de2ae3b24cb33bc9b0444a776447e8875d091953dbf5383ee8aff5e915d1f2

    SHA512

    a68d350689e733ce02de2e7ecf508d88bfc7a848475b90f6e1180148e7905b88cbc4dc39d13afe40e7fd3191e97e3de11467bf2589b7f3bd4d0e2894b85c3d5f