Analysis

  • max time kernel
    2373899s
  • max time network
    132s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    20-12-2023 06:28

General

  • Target

    8bbe1e7c5a8aeaa5bb32b526612ba4ce832852f38142185a032ea4f4c300e23d.apk

  • Size

    3.4MB

  • MD5

    911bd431ca1a03d2c463d16527ee7efc

  • SHA1

    64f5519e057fcc1c0df1a4e3bbc34c64a535c00b

  • SHA256

    8bbe1e7c5a8aeaa5bb32b526612ba4ce832852f38142185a032ea4f4c300e23d

  • SHA512

    a059b3112f963681742d4badfb98747311d5de5f6acb5332efde95c132c05d2ebe2b5eee4c7052c158d87218d7cc1cf3166acf0d874b7a376077d78dc5871c2c

  • SSDEEP

    98304:rib6efffnRcj7jGPJqRZzsX5EOOzvf6I0:rkXcXg+Z2Glz4

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.

Processes

  • ir.shz.shzkisi
    1⤵
    • Acquires the wake lock
    PID:4609

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/ir.shz.shzkisi/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    82ff07ad0cbaefa037c4333315288a5d

    SHA1

    47cc3719995a84befea6f9dec3cefaa77907dd4c

    SHA256

    3d226a5de0024aba38a5395712fcad83eaa96ac420c0167038f235c63a07b41f

    SHA512

    6397aea042b8504c522da81835807422e386b6d62b8889d54dacc7738c77175f268d3726cca47b28c3d86c738784891f5fa9744da8d35c7c229e012858c4298a

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    ba984c359cbb46740a583dbc7246578a

    SHA1

    7626f568ccfc6d70b4c7bdd517cf177bcdd73d7e

    SHA256

    03b178280f8617c73439dd70cd29a38b27f1531897e182bfdae053ac65be4851

    SHA512

    d7930a821b6927b6025a8bfab73dcb47d7d38eb0db2a699939a95dee8956be24e9c40781bafc48e782152e14f2cb4352e991aeb27bdfb801b7326c7efa0a609a

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7053eb0e552a9093f5b05d0f7de23e96

    SHA1

    4a82391c3ec2db7584839dfcaef8df8cfc3da148

    SHA256

    df685e6918c0291cdc30af0d3d473bb15d20e995dcb5f591fcbd63426c3e8e6a

    SHA512

    d634fe89679278be4081d76079da554c0ff9edff963ac4e13cf8b1b01b6c7f78d9f6e73a5ec8a107916349b2b2edf6a22563e018aeb311a27f750a174bbcdb82

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    cf7504b5f974f66670168164d0f073ae

    SHA1

    d1e975491f95a551b9649dc6723f006807520cd9

    SHA256

    3493a9e1d539e2bd783b7bcadbe07e37f5971dc57c8ce8f730840645d631c3f1

    SHA512

    24334251711fccca1c88bb26f75d8f60d0e5a85d246c81aa040313e097d6cd01852ab166470c5ceb643b98594825713fa7b96703f62b9c026e16d9ebd410000f

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    de82e2c94d2718988804b035a46d17b1

    SHA1

    705f5ff19093ad209f2a666085d6ccaed3bf58a4

    SHA256

    29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

    SHA512

    68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    73dde037d43818d6392e51665bee0446

    SHA1

    79d2b7aaad055aaa21aa371d61b05684c2164073

    SHA256

    d8aa44c8b932aa136e23d352f22689c2173c343125e0e7588bb111fb635b30be

    SHA512

    95c88a7ca75a3f60fc3715bcac6a0a0f67bcf8a3a9fde5482f15e8da321521faf184548fc7a31df3f6019c48214b97a683b9fd7d0d2b1bd5595e50fb5d80f4fe

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    c0eba9421a08626a45a47a110141c222

    SHA1

    299258afb8ebfaafa83fe99c2a9b1d3a133b231b

    SHA256

    6c23616a0dcb173257e2e88f99bf93321c15946a49df714040abdd8795cfe11e

    SHA512

    79337b9a072629540d67c25cfc053cef2fbaada5a7a9078e8ff5e66718ac911d9fcbd70d5e827f6e43b6d704014813d82ed5d6ea7298b47a6638c29e626ab7f4

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    ebb8a39b119e69f58488229bebaf3f33

    SHA1

    0f653708fd665de2031462645b64075fa5d7fb04

    SHA256

    efb3839b9a676b7e73e5efd68e5237c2661cbf4d4742e26281e6c506d2e7c6db

    SHA512

    c95666b486e7fd3d332eeb24fb6da0d75775cf6189cbef90852cb0a8e81f9dee9514626030f4c052f9cdba2ae00b3e50318da1713a695b541a712bf1dd64a7d8

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    581172e6c296d2fa32fc4a47fa79adb1

    SHA1

    7f8eb87e890f10ce5f6f789d0bff471cee7905a3

    SHA256

    9f76ade9507267981ce50e789579a5b4c43716e398bd30be8928b34581c9e3a7

    SHA512

    32a39a70e1676e4b7883180d642ad6bb883cc3a844159791d1f35d26c8952ff8b4f9a4c19f33836ffe9b2cd125650e0c845b765e6d5de1652df86c61dd71114a

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    2d201339710d6738256794c8d96f5640

    SHA1

    b2b413b8f9e986917731388f6ae25601ae99eaf9

    SHA256

    13879cd2839fe1af54bc7cff10a807a2937808ede5cab56f48b8eced48439c29

    SHA512

    c083de5a59fcf6cc5d905a28b2cdc35e106c53f7eaaf9054f1dd1a610283df99a7e8a4960a86840eae1d26b74a577a5e0549dc7184723c20d767b4d2b444db81

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    fa7c113a31f199dd903d117f08fa5709

    SHA1

    25d79c073745ea6f83b9f8f806c5242708fe5f95

    SHA256

    e5bb863668c477a89770b804715774c154bf41eea4c303bc602ef349732bac42

    SHA512

    e411e2bc2e2d00c3c2fd50b6d24bded997f63482be2b1c461013511f13e5a59f6de8a19fddd8f8c9b2c67c5e38270c106434db7dedc95a0f2b38301d82fb2bb3

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    d8bb682ab270fc6b73fc0e1e9900edbc

    SHA1

    99d7c802cc5bf14b88e808903b77d6767ce5d95a

    SHA256

    931ed66047b676a241673ba41e5acab6b15e12b9a28b966f22903e190e40f650

    SHA512

    6026fe5f905bd39a2c2224c7d0bea128847e16b00d23ff22131396f61015e90a13768cb5ed6d43241e31ca1c59560af519fba33f261c403a5ff9da01a686459c

  • /data/user/0/ir.shz.shzkisi/files/PersistedInstallation5872092350575574476tmp

    Filesize

    569B

    MD5

    031496421faf7c25384b87e92dcafa1d

    SHA1

    3e99ea451aef7c7a8ae10c4412e128f027c2b69e

    SHA256

    a2c87f71399a7a5b09086a06d49e6590733eb049958655771682670ce9066c19

    SHA512

    ad989e118be8c0804a234bae94be821ac410cb96168fc38c2d0991107653d5cb702ba6c839d1a8def4728c594bec1a04c6be7e9dba83ea92a699e5801d5e03f3

  • /data/user/0/ir.shz.shzkisi/files/PersistedInstallation8496518028790445900tmp

    Filesize

    90B

    MD5

    6b3adefc3fa4fe518e7c322140315d69

    SHA1

    57ebad7b327582669373420e43b090f3aca6fa8a

    SHA256

    2f850092aa95de958f82ad465c2426f0aa3f491b33abfd0f1b652b430b4e5a20

    SHA512

    e9232608eccb91f9e6e5812a0f8276e647b235f01113eeea9a09d8a7f56fdcfa59819612dae881a279b832bcb4404356a654136d479f3eabcdf683593863bf3b