Analysis

  • max time kernel
    2491003s
  • max time network
    130s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    20-12-2023 06:49

General

  • Target

    8cfec8fa2f09d0d7d3b8f9a07d45e2b709c1cd5785964f7c745b81fb8a472c8e.apk

  • Size

    3.3MB

  • MD5

    33b2e37b4ee06fa3b1e3fb0879c6f596

  • SHA1

    50254ed9e4e13a3fca6470c83dcd9b06171af8dd

  • SHA256

    8cfec8fa2f09d0d7d3b8f9a07d45e2b709c1cd5785964f7c745b81fb8a472c8e

  • SHA512

    d98196dac60a90680d75ee64bd2467c29284864e4f99aa9c2e5946955b7379be3ded0a49ca80062c47e8222b0305c36ce0a0290435e17cdd31371da3286f0511

  • SSDEEP

    98304:kEVF6aL7fDW3v0AMYfccAhR+QRodxH8l37GiK:k46x3vKcAhR+QRodxH4vK

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs

Processes

  • ir.shz.shzkisi
    1⤵
    • Acquires the wake lock
    PID:4479
    • ping -c 2 -W 10 -v google.com
      2⤵
        PID:4554

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/data/ir.shz.shzkisi/cache/~test.test

      Filesize

      4B

      MD5

      098f6bcd4621d373cade4e832627b4f6

      SHA1

      a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

      SHA256

      9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

      SHA512

      ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

    • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

      Filesize

      16KB

      MD5

      e3ff2ab1e6eeb0498538aea96903ea1f

      SHA1

      fb80d7805d5c847bb63a7100abb0d9293e2297f0

      SHA256

      63d7b4ab1e5cc01c99ece3d58011ae13573eff56ca96ea6700e58c790ca738d6

      SHA512

      60f65befd5d8a4fbdd4f58b17556ed85ee393d9d5aa5daf2b2168d21db917ee452c81fad8827edd76a918a3b7386255a4a44db6b9fd714a87be15d6571d3f311

    • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

      Filesize

      16KB

      MD5

      d49e440eaa4aac0a5a4d3008374f701c

      SHA1

      1de07509c682145ffde63797867f19134d3c6baf

      SHA256

      28e2563d92dfe9325d897777b3a745de8d0dd6d450fb7b9e296d51ad3b87af4a

      SHA512

      36f55b67f5f43e45b5029046b6a7fe23470e962f4de828c594b80632a32fc334da9ad55f75916bf8902e96a0a88af58398dc183c68ac8b602ba3ee97dce99a80

    • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

      Filesize

      16KB

      MD5

      8ec0b65b76b176e5e6d6c91d6d5255d5

      SHA1

      69aedec2c5bc438d10df14926126fd5a68d8c4f9

      SHA256

      b461d6f5516eb118c6481577544cd9692a74e6cadd692d3c5f52db5045305fab

      SHA512

      66478905f0e0ba7e0e8bce9e42092ae4f649e173dfe08abacf6189fcac4889626708d1368cb65cdc9b64ac9989bcdc0aa481ec790451c149c6f18e8d5dbac79c

    • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

      Filesize

      16KB

      MD5

      a85cd4d0ae60e6e28b1dc31b8c821136

      SHA1

      639e6d225a3d9121832268c1a29b0a9e5fbbda10

      SHA256

      ae1f42b7c6bae5ac11fac89e4670ce1075ea1f73b8f6118671d40cbf480856ab

      SHA512

      9e7f483dcf0d306247f9fe1b403561a2c5fa40754ad155ec871307dd5df8b4e68b169671d137e18c992fdfcc15fd897f8c3d2a840169d48a6b5b889b8c27ca61

    • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

      Filesize

      16KB

      MD5

      7237409e0640cfab7bdbd429bf821a3b

      SHA1

      4c3da934842f8d4835dfe2a9c275a300e5123309

      SHA256

      5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

      SHA512

      c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

    • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

      Filesize

      512B

      MD5

      6ad98325218101d2272b71d74fddcb62

      SHA1

      1113c9fb7bb8fadd8d6f500d6ba50e08773eae1c

      SHA256

      007567c8033d78a1719dda3b36e1ecfe3213c62e3fe0f97dae592f14a9684847

      SHA512

      a2bed4e17324f18ecc21a8245f41beed7ee4616a7e415783fb81ead4789eba61bab4dc10fa9b28dae2269f9b9b135b130f82e6a900c8902734cb9fd061716bbc

    • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

      Filesize

      28KB

      MD5

      cf845a781c107ec1346e849c9dd1b7e8

      SHA1

      b44ccc7f7d519352422e59ee8b0bdbac881768a7

      SHA256

      18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

      SHA512

      4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

    • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

      Filesize

      4KB

      MD5

      55b6cda32b527d3814f6c89340291b96

      SHA1

      4a9d92f480101fb53ea29c431ad8c0ceae3f874e

      SHA256

      b21695183bf3a8d2b61c8eca9f8275eeec18ef99320fefc59b3224af2e1eaaca

      SHA512

      a5f03bcb86f1e70c13919e9ffbafe64d962735a93439286af5e0c8b79a90a7a03fe77b484e630342fc1485497ea59f982b1cc53e81333e04707ae8d31bd18511

    • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

      Filesize

      4KB

      MD5

      7b827eb22bc3ce15c362b247f1bbee4f

      SHA1

      9516ffc61a9409714cadc630408264f664831384

      SHA256

      4f075bfcd23def73a9b45dd981dafc6a78595b4895b200fc0c5de3b636f36a0c

      SHA512

      919b618844ab5f7e78104fad882e2ea908d3cc333ed991864d928f03184a9e6dd1ba2728a69595151cd636e40a3311463cf97ddeac01d75f4ea3620f3764e528

    • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

      Filesize

      4KB

      MD5

      6ccdc0192c6f7da43435b456f9d2b90e

      SHA1

      2a396ff5b571bc888001176584ef0cf434bf9f71

      SHA256

      1229756faee72c9ba32a522be7cd3cd424bb3c8e3d3fa8775e1dce37b4ab8c8c

      SHA512

      9cbf4a1db983ad4ee1287b6cfa58a27109f19c5e1ddae0a3db6e6d3898984efbfd6162df2ef2137ef35388fae1bd2c88afb97f05175800ced20e11e784a00643

    • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

      Filesize

      4KB

      MD5

      91e33bad4173299dbf96c73b29e8ca3c

      SHA1

      c5d84511377a7b26a266e00fd673a102dbd0db73

      SHA256

      9365fa19cc95ae931e9924e2780f1240f2af9b22e4873877d3fff0be36d04544

      SHA512

      0752988b50818bad4224942cfafa2ee033eac3e358641da498eb003ca905c92c64d1f08bb509641a020db26b949b3581375bebb24ca1ae28935ee9493012d45a

    • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

      Filesize

      36KB

      MD5

      950c48a6b0da04c2c42b6646144e6647

      SHA1

      f7795010dbfeec6492f849f8ae32d56cc0058f8a

      SHA256

      e9caaa634c09c1fc1099d32e0d67d1f51ee04b9ba98fbcafbb40e132f81d2723

      SHA512

      bf78ed2afe7f79911f53b3fb78df35c4a75115d12551d0474511116bf1e86b64d6fa972f522d5345374db05ed958c25f271f541663ccf34688f0b46f02cbeab3

    • /data/data/ir.shz.shzkisi/files/PersistedInstallation3734537937345687534tmp

      Filesize

      568B

      MD5

      5e1369c8a9c9837ac00a309d1e84ea6a

      SHA1

      01da92b1051fc89db784405428a320d10f407b67

      SHA256

      265d091a6342f73f49b426a75afa136a59108c5000e626f3a9344fb92596ead4

      SHA512

      99375919c6fe4e0075fb513863d2425c49e035a80a1e1ab9ef24ca481c004bf8c5f366c7e7fb8b82e6b1cc6fa817691ed30195a20e570af64b27736c4c9453cd

    • /data/data/ir.shz.shzkisi/files/PersistedInstallation8180876163289724517tmp

      Filesize

      90B

      MD5

      43e8ea336262fb8f8288d32ef3474c0c

      SHA1

      1eb9ab882c80de657410de9ceaca738f1030ed3a

      SHA256

      45e33d7fe339a06f554598ba729666b235fe76df7b3314ffac0abdf83d475c8c

      SHA512

      31c030924a3c7d44214ba3121f6092c2efc641fecd52158247d9aaf00c7f26481f346d9175d883d651c393973080a41177a0b73ff369c08dc0075df5eae1c4c8