Analysis

  • max time kernel
    2417667s
  • max time network
    144s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    20-12-2023 08:00

General

  • Target

    91f989ba53006d7710488227a800a5ee28e731cbaaa4ba71c5ab4f30c743cfe3.apk

  • Size

    3.3MB

  • MD5

    871d021d89e2c1f08d2ee8da43aef4f7

  • SHA1

    7941b06247ec6e4faefcf5dbb371c5dc61b5666e

  • SHA256

    91f989ba53006d7710488227a800a5ee28e731cbaaa4ba71c5ab4f30c743cfe3

  • SHA512

    29a8d38d0ecaddcf5cbabd562d7a63edf126453c3f686ac0cb1f881b48ee84e7500dc20e51c3c148d71cc703e4958d24120dcdd05d7f98b3de1d98521769cd3d

  • SSDEEP

    98304:QEVF6aL7fDW3v0AMYfccAe2pwFT0rIU3B8jtC8ikX:Q46x3vKcAXGTnUqjskX

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.

Processes

  • ir.shz.shzkisi
    1⤵
    • Acquires the wake lock
    PID:5107

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/ir.shz.shzkisi/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    516b14023829ae2d7574eb2672f6ef8f

    SHA1

    972684ac15e70e8b9ae9977afbf0f9e5ff197bcd

    SHA256

    60f156000d988d54bc3b8689ede426bfd45b0b74d4b1ab9056240d0eb69a312e

    SHA512

    854f9b41f146f354cf4dc0e26b397f78e1e05210b3232a149b38350e8354502557b58d6641bbd9a627ca566d7ad7cbe787f55f23dd4302f2c59008b51db1c954

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    1e6e26031f0e8d0393a6e358fe53d46c

    SHA1

    88bb1020ccc9989786e366e01b3414239da506a8

    SHA256

    6c1bc58219f34505cd10fb8fdc1cd07937c215aa74023502ee3c81182ab20a50

    SHA512

    e3f8ffe3c072fa1965ec52eb2029365837ca68b06b33fdcfebc46702134b5d8625f603e229c75ac0d70e863fc001104bf831e739db975597a199fcbc721d3236

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    9d37e64d9fe9d3dce8ea7d920782df38

    SHA1

    ee725d1604477814a765098ddf13129a4f26f0a8

    SHA256

    feab75bba2d5f6983beb6ad63962c230bf69be778c83404cb939e50aec4fd8b5

    SHA512

    0a22af9c270752771392191dff4c43047af08519a9ef8322b3e56c56ebd4593c9f7c5d66f811c62e543d59063cb5ca3043df0138de2f59ee9c8f6666ec295ca7

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    61d72101b517e47012d8e3368c913d59

    SHA1

    90a79557568f5de397995346e7331a4e951c8a50

    SHA256

    472e3c056fa98132f28d993dbc0ceda3ca472a5e559022107fb748ac86adaa91

    SHA512

    843fbb9ac675238293125bc116d6c4b8ce5f05444349e0127373d591b4858dbe710fe3345701a3af2f9f2ee221fa1747de37da788e0413302a593fa1ca311c37

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    eb52a90bb70b76e946b62f50b6f7fb85

    SHA1

    42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

    SHA256

    48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

    SHA512

    b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    e57e0fefe9a317208962d0c95da5c60a

    SHA1

    a01609d3b6c03613a65fcd3b3cb0d457c35a78bd

    SHA256

    4d9b313e980be3e0b9d291403c2f3904e363bcd37106049e3684fbc370ec064c

    SHA512

    574a63a979fa2c27938b0c9d2c56077084bf0b46449dbd94b70672c3a4efa97e08426421f5ea65de6ded519851e61127d21728100d783c5172bde35530da04e1

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    1fa98c733009911d56d18b561f91cbb1

    SHA1

    23dba325ba187b02763ec0fc7954a6df1d17823c

    SHA256

    f48d4e0895fbd9b0bf206e4bba5f8b91705e42dde243dafc3001321e22eed618

    SHA512

    98585cff1a7229eaa2c1450a8f74931bed66d9747e61a75ba6df296e42218b4ee78cdfac93ee75d8f65afd2129fb686b76ae8b703d0361f07c333302246f2908

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    0b982b830ebe6cccbf91d7b86715ab68

    SHA1

    80a113bc10aef1de3fc15314118999daffb4414f

    SHA256

    fa00fb5e0ef96d9dcc049909d5685486355cb4c3ab9196ebc766aacf26af8794

    SHA512

    5436f1995b2d04e1938facc4392cced9c9209b4415ccd3f9cee1c6e6f650aad3640fc0ddd7a46ba0f1e533ca08b9fc76e32e9909b1d9ee4387b5c5f0e73fbde9

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    4581424d7c72a660703cf0b798474a96

    SHA1

    61b9de8946688c0a2a1ef6fe8af961b59920b3bd

    SHA256

    69c73cf0e72abdf6a4a898b3b7e1333645be9bc3f95c6dec3544de9a3b641d58

    SHA512

    2c36cf9758ac349518bf1ab3ee335944e5a88e38faabbf270e1eb50f276837fa689f1778915a646621342f04d99d53cf84d5d5a795dae4125d36bdf69efd505d

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    6b63d9e9952178607a95d093f779cc49

    SHA1

    3d03fe7200c701f22bfabdc51c3cfd0084b1ed69

    SHA256

    1cdfe7b80e3601c9de5ce32020e70b76a818e2a80c6c11548a9648e97ebfd43b

    SHA512

    1a8458281e0589dea80dc74d6f3ca27739f14678c9c6ec5b6efa154349c88e11be6ea496c0862127c4eeb43189f2549572ffbec06cc9b2ec0d2280008eb93f48

  • /data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    0b0fb4f179d40c66a468f8a5aee00daf

    SHA1

    965ee3845ce26aeda46759ebf5bfd5df936d8a3e

    SHA256

    ddabf265b78d1703d72ee39e1e551260251d57f34225a0f7f83969d59c077d4c

    SHA512

    109daf80291fe4a40098e094f607dafe61c2baa7bd1f85d8a0fd990bdb350495bf0a7faabd88d0d107c2117b566a31b7210a2152b51ecc39c897f3873b05dbf7

  • /data/data/ir.shz.shzkisi/files/PersistedInstallation1235741758899635544tmp

    Filesize

    90B

    MD5

    a436f05315effbd040d47650d6b31fea

    SHA1

    96b775e1682b1e6e1ef427f2e5f7e6aac4107556

    SHA256

    5a8ec5e7628329ced75820a474ff41d124bc0a34ac4012def5c5fec9cc1d5b0f

    SHA512

    aa762ecb81004be62bac20b8f7e4fda6d4a3ceeb9728704447fa77cbe3ce2a29745420596e1d44b156dcdf7cdcdc04022fce35e0ea9c01a353324759b2aa8687

  • /data/data/ir.shz.shzkisi/files/PersistedInstallation289870927398142445tmp

    Filesize

    567B

    MD5

    337e64f94ce1b2cd3c3bbfc7ad8ed49f

    SHA1

    e401db4c23812c1d76563a7eda9f206d6e3f2bf0

    SHA256

    a16643ca89f65f9bcc255a31aaf71af5f7e4e6ca4d133430436edf9e2ecf09d2

    SHA512

    589191126168a93ec6301e2fd42b72a0ed1b3c797b615eed78c4895494c3d5b094b2c822a65903033683678a91821f1b4d302963e67d37f24a4434c5036fd297