Analysis

  • max time kernel
    2417854s
  • max time network
    149s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    20-12-2023 08:00

General

  • Target

    91f989ba53006d7710488227a800a5ee28e731cbaaa4ba71c5ab4f30c743cfe3.apk

  • Size

    3.3MB

  • MD5

    871d021d89e2c1f08d2ee8da43aef4f7

  • SHA1

    7941b06247ec6e4faefcf5dbb371c5dc61b5666e

  • SHA256

    91f989ba53006d7710488227a800a5ee28e731cbaaa4ba71c5ab4f30c743cfe3

  • SHA512

    29a8d38d0ecaddcf5cbabd562d7a63edf126453c3f686ac0cb1f881b48ee84e7500dc20e51c3c148d71cc703e4958d24120dcdd05d7f98b3de1d98521769cd3d

  • SSDEEP

    98304:QEVF6aL7fDW3v0AMYfccAe2pwFT0rIU3B8jtC8ikX:Q46x3vKcAXGTnUqjskX

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.

Processes

  • ir.shz.shzkisi
    1⤵
    • Acquires the wake lock
    PID:4471

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/ir.shz.shzkisi/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    a01637af42cb7c3cc54c3e13846f4831

    SHA1

    4f2cfa4d399faceff37e6aafa40774b6ed5edaee

    SHA256

    40dde49646ae88a8dbd9c1d72253dfbf1b0a49050f0dbb809a120c80818ec326

    SHA512

    6f09d769e41059b1d850e85ee5582596a012949b3207dd408ed3ee38010295aa17058bd9de8066f1e329730fe8b4c832bff2206893623e0effed5e962db690d7

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    242035f89eddff91e4809137cc27ddf2

    SHA1

    5a679ce7541bcc323707c4c4d227a18998420b21

    SHA256

    ac6eaf3902644599597d138159e764d8c4084ebbc5b01a3694c43f7ff2749b50

    SHA512

    d51028b43d65eab44af6daab0c8a42d46e7a1c21e97c229420806b4385c84174b4ec3bfdfc5bcb3d043eaa86aee87f39d4090b83ae390796f3e048ef3ab31bda

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    47585688a9318b7fe7fef5d68bbd8e35

    SHA1

    902114cc08a6eb8ff22c4fd4a943a05f8f2f0d10

    SHA256

    6c1032f3a48a38191e9f3ebf880f33c612b351c92017fde48a20083cb02f9383

    SHA512

    e0cdec1b17ebc9dafa5101f191255a67c8a83ef4428d6f61fdc4b4eb71c1d214af8e489f594d0a6da8d0657c75f638393f4c08ea89e6ef3404cd94f7683e2174

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    18bea4d1602771ccfc7bb6d540d976b3

    SHA1

    2c46416dba70a3f1efc35e90e90c077502d68575

    SHA256

    e72832bae1616a111a405000181fcc8c976b7fb49a59dc9cb982cd655d6a6974

    SHA512

    ba65962b34db74d9f66bd982aa73818d9c13246c7d26a3643842d535aa1a226c5517c6f72abbf6ad42f66cb6c93c18fc9f303040c0e6c6457afd0b557e273978

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    de82e2c94d2718988804b035a46d17b1

    SHA1

    705f5ff19093ad209f2a666085d6ccaed3bf58a4

    SHA256

    29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

    SHA512

    68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db

    Filesize

    12KB

    MD5

    3c0d7bedc43b75e48f8f830d68f7afc1

    SHA1

    14091391657152c503c3e35ec74baf78bb3e94e9

    SHA256

    66ff6eb707fd01f43b530f11f0f8a2b1d37ba9afd1c52779b00c4884e28506e6

    SHA512

    e888d1a877d2d957be05c56095f9a1c7cee5e7985b3c8bb07fe1f32888ffd90ede8a1559a0df33403876209891810d231bb164750b93e2c6b9d72d6fc486c2cc

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    40976f1e1560578aeb45b73ca93f2f9e

    SHA1

    b8557bc2b07fceed823d596350cb515463e73161

    SHA256

    da37afaf01f16e5712d78f6d808340431e2dda19170e21b4c2a703ac5965a845

    SHA512

    859034b16b66b7ac3dbc4588758b7d076b8c09f962b3b29327efd2fb9cbf21ec1ca5cfc63c5f05375c93e29aa6d87a6ff65669342f99744d31600a74343597e5

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    279b51c09ed26fbeb88fb3217ffce46d

    SHA1

    05cd1d90fd4fc62bad30043e9dd456b5979b0ca4

    SHA256

    0adc4fbfa23793bde47f88d509d542d1aaaad01db177766b6355c8560bd0e18d

    SHA512

    755c80e8dbf742696b2a33f2cc5710c2dfde664f3ae7984eb1a1d945eae1c65c407136d9a490ea58485ab70b985f7c5e3643c46634042330d40b729a1443c7fb

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    3da9da705866ec7d34bb30e3b3255cc1

    SHA1

    98589173d4791b5399ca22801a23e01ad68ae6be

    SHA256

    55f71aec4fb956cdf4b34ed834a5dae4b385f29fffa51556410ca2d5d15a8550

    SHA512

    872bcb4b3e51ae66127a0b3c9319ff41ce85b75cd51ecd63897134144154b620bf957c1a0b14ca18eeb33b774ee91732b8e0df7ef4f49ec7a2e4ce6694aa5c55

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    1e372e37978575b52eb09594766b6130

    SHA1

    e0ee4f9b94378d9fe0f89b2d5453fd94a9732123

    SHA256

    db788690ba98e50359aeb9ecff7743a452c8af1146089beebddfbd7a17341161

    SHA512

    421f28cc357d626961f7e706516ada7d254a8cf4f3ee6e3a76b68929696fb85b78ea96ce315e251c0d133635b1937df642dff477813658c4d9196d55fedba6b3

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    181b6709156949ca4956ff1afda7a7ff

    SHA1

    21f86e42af4587f25b2fc89f1c4ffd8d3ceea521

    SHA256

    830d03bf50d84ba2f359ebe0cca7da6bfc418c9a99f8667707040f20f0e3d8d6

    SHA512

    9c56e4deb794a3fee394b0c7acac64b84a7675fcd2f58b15ccad5cac304f63b78f62e2c5de4255003563884882751c9c0fe1f08ed52a7343ee0c21c2bddc755f

  • /data/user/0/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    6bbccec7dc9719205cf6f820d3fd0bd8

    SHA1

    6e676fb94ca8e734c6f4e42eacc0562af94e3507

    SHA256

    013137d39e37af0c2c38980c37aee54978a1514ad158f5e5758977be520c2b84

    SHA512

    ba864be2a0f2bf66e37af5975267d75634ba36a9eeb3a98b126fc196d735ec1636dd29bc508d58e5f0504cfaf99bc06703e5048676c592fec84cf9b6570c1cf9

  • /data/user/0/ir.shz.shzkisi/files/PersistedInstallation4400709229183772796tmp

    Filesize

    90B

    MD5

    d0d824a437b4ac41617ba2afd16f1aff

    SHA1

    023c5055eb0d24bd85f748abc7ed1cbc27e199ab

    SHA256

    e5e264a272775c07ae893e090556ce8125a3cc5373de6a5b8e4ccdae89868a2f

    SHA512

    ff4f964819db5053780e923d3c594f4306d3d9ba05081fdac67582bb86a79e8e9e3ce988116d95b6cae63e81f513fc3009d75a44679551e884d277a9d56482e8

  • /data/user/0/ir.shz.shzkisi/files/PersistedInstallation5407394114468268030tmp

    Filesize

    570B

    MD5

    d8304b09442dec28b0190783cc4b7ab1

    SHA1

    52593864853c5d9c6a70fc2949110a6e0eaba92b

    SHA256

    2b015fc802858c1c5f04e9b369037be0fb73dd3a80faa526cc4926c73f256d05

    SHA512

    7de8723a25c627edb2d20d0949aaccd5b71d98f080083b9f8ce3e2e4913d7b2e7423d3cfa1efab06ff7b33ad934fe55ffbf022f645fdad4186007c512f8c6e0e