Analysis

  • max time kernel
    2374014s
  • max time network
    160s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    20-12-2023 06:28

General

  • Target

    8bbe1e7c5a8aeaa5bb32b526612ba4ce832852f38142185a032ea4f4c300e23d.apk

  • Size

    3.4MB

  • MD5

    911bd431ca1a03d2c463d16527ee7efc

  • SHA1

    64f5519e057fcc1c0df1a4e3bbc34c64a535c00b

  • SHA256

    8bbe1e7c5a8aeaa5bb32b526612ba4ce832852f38142185a032ea4f4c300e23d

  • SHA512

    a059b3112f963681742d4badfb98747311d5de5f6acb5332efde95c132c05d2ebe2b5eee4c7052c158d87218d7cc1cf3166acf0d874b7a376077d78dc5871c2c

  • SSDEEP

    98304:rib6efffnRcj7jGPJqRZzsX5EOOzvf6I0:rkXcXg+Z2Glz4

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs

Processes

  • ir.shz.shzkisi
    1⤵
    • Acquires the wake lock
    PID:5078

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/ir.shz.shzkisi/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    ccdf95957e1682bb6f10f7168104597a

    SHA1

    e43b5907448d63f9de350f570087e830e7bbcc5e

    SHA256

    bf8ccb9be278dc919db44c285ecc344309151f24e53dfa8692dfeefa18c3ea68

    SHA512

    d41ca5e6c3c6de7935c91eb13c3710c98dce6a6149f3b531d6ffc72158ff38e667eb172e0fcb63c70a9c1bf43a74c8e0896aaa79d25e3b921059094ab8338f0c

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    9fe12e123bda7a2e49a9e1a9bbad1a47

    SHA1

    6d812f69d128be0bde314993a1c712eda3d16cfc

    SHA256

    bf1d35bafd765a664551089b388284ae399c4e5af585a4deff673cec0679e012

    SHA512

    85a634ba1f9d0411c4fb48129d1885bddd9b0c664726036d2d9ec267ef8af7fb01fb57b06822f12572ff0f23a1af621c3a9326f12952b3ac546a418485c29357

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    f6ff02cce94d96842a147c08d6e70a8e

    SHA1

    fb203e1982de92efc5417c9d4bbb70db1dc6d74b

    SHA256

    0d90663d75be7f6ca528cb51c45c8b512b74ea3ac0bb383d9d94c3d3a9adb1d2

    SHA512

    8eeffa9ad6c0fb3e8ffc2a314d765e1418e5ad384df1006ee1807ebcf235e2abda98f7897c53077c8410668cf7b9a956280156999acb9a2c53fb27dd0dad3654

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    acab68d58d8e7952a5a0ec72bf2bd9ee

    SHA1

    22c8ddf00ca2288cb85c23cc0b82b3792d401152

    SHA256

    5ec2af7576bbbc871b30520527e58ba608769579bce300fc928d2952f2f4bc4e

    SHA512

    1ce15408673c72bc4042b544798f06fd861e73814f3322905785ebbe8d7007ed849828e21103c2ecbf16c61de1708df09cce80634db242b4bac90673fdee9219

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    adf6082723784327d7d1b34adf974e7d

    SHA1

    b1502f70eb881a1dfe41139cb719fefb877ee37c

    SHA256

    252defb835b04f4af7c59bde7bd119664e901928f1373171a287897e729cb2a9

    SHA512

    762f146c452e590e0e3015a080e9821b5488551b9cca7a212ceb11a853ddf6b1894c99d09ba20e6691f5078aaa8e17a6ed66dbbe541eaee152978fab6884e27b

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    12KB

    MD5

    163b0e3f017becbc89b9d7f330b78f09

    SHA1

    1ef9cd8ac8655190468d0ccece0a4738634ab0f9

    SHA256

    cf01452c3b494692386f6c5faac340eb3eb894bd416391002d56645aa8a9ea36

    SHA512

    6a85a30d16fa58a4fbbb05d469778ee69ca79deaa74316ccb5be3ee07fdf78dde22e95db3edb1b88b18478e8747047445f85baaf9556b9a1e55d9a02a80baffd

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    0b4d784b9797aa5d9027a09dde618654

    SHA1

    d98cf33d88f4b23602caf77d4fdbe4eb34059b30

    SHA256

    5a3144ef05a4267fdd1ea12484da1a38e53b4fe52025447da93a268b48799587

    SHA512

    b874bd6011e91d82011dfdbc20ee1e423a88f053dc64bfcf5b47396dc0afc9b25e3ab9f4a13b06b884a39064708f5def37f4a72678733f338fa0a103a13fcd1f

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    e48d4af203005aacd88584885cbff3b9

    SHA1

    2dd1fb4719cbba091257a461aea86c324ea19302

    SHA256

    5a9059688a9e1f73f1e36a06ce34ed3bd5cdfc53d71b58d59caa25d949e4bb2f

    SHA512

    e5a272599140717de366fcdec0389a809c07fe87fd8f829863abe34822986f9694242274b250a178e4e554f09b972c477bc1258b9833b34b15aca419a4cfa20e

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    fed3720778692329e0a39532f38cdabe

    SHA1

    6b39aef4453df52e05882daade704deb707cf288

    SHA256

    93a550f3862a7bb603f20f6e073f1b1e04d097a647151e42b8ee2a6beaeb0ef3

    SHA512

    a674d79f3c39dd0bdf2814710bc44157915583a823a25ec34280b275159c73fc9cc7f431f9e5a7b92093dbf6457fa56b4fa25a6c12c631a908af44ddad70df73

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    c81c16d8b434ae1534babe5376b004bd

    SHA1

    ba9ff92c99aa548a5583128f560e9c8fb415dc0c

    SHA256

    a4a2ef3de56075913a71f0a061fb1112058ee5840365a14932b8e55a5973397b

    SHA512

    5a54b612eeabf32f3e40d4551dd5eebaebcab17c3fd221770a941bd06300955f09fba09c37f810dede47083c5efa6699682bf972af24955f6057f70748a0ed1d

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    0ec42a523fcebc1e3c3d97e4b6ed757f

    SHA1

    0d9fd5dcd687c4a95d348975b94c3b143b8d31d1

    SHA256

    90fddc0322682aa0e31cf15681361186df5a84d11da4d7b3c65cd07201f527ad

    SHA512

    021932921fae4155df381ef70e49862d1ee6f4df488fd2d85b0d9735a053406c6fc6c248613770928a1798191e81a39b58ff8829c490416323ab61a555745036

  • /data/data/ir.shz.shzkisi/files/PersistedInstallation6017989563741687006tmp

    Filesize

    90B

    MD5

    d824a39f897b2968f64f90fec4d98474

    SHA1

    a064651302438a616bf48c271517c9892ace4354

    SHA256

    68518d23bb57b72e4cd86d8fe1f3e8928345b232e1b1a2de7ae11987c66737ab

    SHA512

    2a752e9e10cd149cac8a4b4ea4ae30e4bef1e3cbef901fd8146d99dcca6250cb66decf31350bdc2d1c4e0339a8a288b6ac753d1f9edaf5197216c0fb7b82e4a9

  • /data/data/ir.shz.shzkisi/files/PersistedInstallation9090405780386389425tmp

    Filesize

    569B

    MD5

    c071860288ca28890b2e312024792583

    SHA1

    36ef842c0ae787f3e19ffbadf10437f24d100e49

    SHA256

    f647ba0bed8d2e9ffdd9f7d0f8119ee229ee63ff7ebedc83b97e81a0962f3933

    SHA512

    b52ba50be4556ae2d036a01425ecbda7113e07e0b3683e6968989000d600f96ac5e282873913b46f2d96aca9fe58c80af14d3b2e4020e477b89050884c575044