Analysis

  • max time kernel
    2418478s
  • max time network
    139s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    20-12-2023 06:46

General

  • Target

    8cb2a5f48784b95958a5dc8a6bb97a65916e7ad4ee43e874d50eabe7c5e88990.apk

  • Size

    3.5MB

  • MD5

    6ddae0bb705c150cfeea682d43710bf1

  • SHA1

    3610672b0e1d45030bb3267d3ffdda2122554cb0

  • SHA256

    8cb2a5f48784b95958a5dc8a6bb97a65916e7ad4ee43e874d50eabe7c5e88990

  • SHA512

    b9203a91abcb2859f3dc785190c86207f76c47c5cf39ce2fef429950473acba31a6b53b126e04ae87deb7eee3843c5aab9d5adf5cde3af60e0461abd8ea812e7

  • SSDEEP

    49152:4/NUzSHe5UQtHy1fffEcy317sc1x7B3l0ZL7ZhJqqwVSvsEFP2R7QBub9e3g5zpH:mqU6efffnRcj7jGPJq8kVQI5Dhpdns3O

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.

Processes

  • ir.shz.shzkisi
    1⤵
    • Acquires the wake lock
    PID:4505

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/ir.shz.shzkisi/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    8410902f7454a511e35e3a3c9b093931

    SHA1

    504a2e3d31b5690a43e36ff34e5afd208bded9d6

    SHA256

    64a2aaaa926f58ec67b37d27b44af370cc8e05b4381e44d4ff244ed8b95bce25

    SHA512

    189659e3a6b8f88ba8292aa67c1b9e5c9f992b65839841501363cde8f8eaec7a99ba2b249cb49639859235bc97469ba6a8eccc0b57f02fd6d1e2cd14a1a10bf8

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    263226fbfb44a76ff4a2dc39c6cc0859

    SHA1

    1cdacfc35dd030bd3b33c2370acabded23c77fce

    SHA256

    cb486f93ed218dab4e83157f224ee015e46d540c4c2a436a93b930a622586725

    SHA512

    d72cb0d4bd06022deed7a7377c27cf89f451ab8033bfa4ee174fd5515b027050569e0f8559be994f2ecf57e9c21e047e1edd5eec1a6ae17ff4b69e2ca8981713

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    2194fb59687592136f7e49bee2ca9a88

    SHA1

    adf2a312319f8ed4343dcfe40214812edb844db9

    SHA256

    2d15f1e54c8b3871d89af81a70b59f551221be6521013b4700958c6423004f0c

    SHA512

    d4ae7820800a13559e310f6bb3a44573556d79210103fa203bd8f39dd14e869430e45f8798b0ca24ab00087010ba7751977588cff852a45da70fdabb1427d056

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    de6be86c629f27a305f71e5564f66fc7

    SHA1

    78be2485e51ce3b82edc53ae169e84eb036fe98d

    SHA256

    04fdd2f2081f3cfd8529a9ff372ee390e0f22f01acf8fed50c52821f1779c9e7

    SHA512

    781d1881f7133ce08c7a3d1264adea21bd9d613ab10c39dc701ea23143173bf8291f8ea3901d9eda2c82558442cf95ca3dbbb60f94c87a8454e6c1b85c4e09ae

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    d9cf75fdd1c2292d986f6c3d5d60f2c8

    SHA1

    07ecb1d3a26d952ae5fecf54f36699ab498510b1

    SHA256

    2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

    SHA512

    442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    83d5e21bb096ce90a493616dcb795b6f

    SHA1

    3f40b985e49084bdd47ab760d242e58e115f8ade

    SHA256

    692df121353727af250d07593d3d6a0718cf7f420204c2f6c10d22e3a9ed14ee

    SHA512

    f05c126fdac5193d2b76879c9dbf4af9cd76cea3e0effeef7e88117f5e062d9458199b65d5595f0d061c87b8c918eff96cee6c786eec9a50e4e00477e104795b

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    fe52cdbf453fc9e1dee0ba5ec35f9ec6

    SHA1

    3050dd0e8f4a4bf1c809ad18c9cceaa0c41f82cd

    SHA256

    6377a2b5de5f0319ef6c71578d6669f7056a17863db05bfcd42b7323642b8ec2

    SHA512

    e3dfe46b61bfa1fa3d78bde2de5b66c70a844ddb1f497f42a4349a5b52930da7c9d570d0218956875a0d713e28ac37b43e3877e32227b616112e0ce633d12506

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    05e7426bf5f490e87328acbc1f5bcf96

    SHA1

    c6863f26c2c4eb610b0353b21e12f65780c7d7ed

    SHA256

    c517b2a6c272dd74a33b65050009b4c56b03f78487d03199c81b2e887c09303e

    SHA512

    5221132c74d6e162e629586cacd6eeaa8b8bfdef731dec37ab9ba364ec8161f130abb4dc3a85fbef848927cdcb299bd1976a6a029d87bec2e8eee7caa88e1b59

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    22b8763d92fd226398f961ef015e614d

    SHA1

    8f1f639b1e6538f69f479e99df50fdf851a98b75

    SHA256

    beccb66b4bc23be15defac31d4d5f86127393c73b013fe178171493cb0bff526

    SHA512

    b3c59bcfe589a9a9a2004da91481604d6deb73ad7bef346902dccab779bbdc476d261e0f78348b7fa3ae6c85450352945e04e7e609428e0c6dbf49c06882608c

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    92df86e88863372b3d5bd92152a8795a

    SHA1

    cff186fd43adcef595901bccad076c6cbfa26556

    SHA256

    bce51bc5502fc0be417ed35c2792ccda1d34c91d3f9ec1711de5a5bed08b6408

    SHA512

    892caf1c5c52fc611501d74780ab114d64a4c6ed8b9cf5ec94836887b36485000cbe6e6dc9bb2eafff0309c829d5464335cb180e53236fd638e08e0d6bdf5207

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    445d15b99251fe1b4c096c6b282e8098

    SHA1

    d313a9d12e8da389d1cd4669edc10ced6ea8f41f

    SHA256

    b0dd7cc3bd9ef0c8f4c421ea3b31a5f57830fbfe26037aa122ba962e4255ed10

    SHA512

    3eff624f20f9021fccf560534e79f2786d83cf1894243813616497359aab8625bfd4e3546ef3d080ce2225d13f435d6b1cbab952ebfd6906651d1f32a229f1be

  • /data/user/0/ir.shz.shzkisi/files/PersistedInstallation2993825742919588744tmp

    Filesize

    569B

    MD5

    2a159b4848b8ff7e7e63a1c2fe78fbb0

    SHA1

    06ef8c29a4030415415a2ee0ae5366382e2d8dfd

    SHA256

    901094cff71fba6a37a3a20b86615c0e5206935bb11ccd95b81cbab73afe21ec

    SHA512

    14fee3238441f46fcc1ac25ec9b343932bb5551c4ce0f5186173e0cc563054ad02b41a66a7d3c36476735fd05ea093066abf534b9903d9ae1148401231ccd0e5

  • /data/user/0/ir.shz.shzkisi/files/PersistedInstallation7228934349505624842tmp

    Filesize

    90B

    MD5

    ad9b3b8f6021a3c0176f471c5dcecc7c

    SHA1

    bf4fdf7dc9ee340274309b6d6ada106601a717fe

    SHA256

    4d8b143ba783126d5b01989d13cadbcf629584a41ff86e71551b90cc6c350156

    SHA512

    1526fdb61c73e5e57b4c011c9b64f23d5d9cffa5778fad45606f067847c41e487afe06df6e5b5a53fe32a6afc32a3b3a15d80da8d09b7a8365db7daec8b153f6