925e8f615d785476093b838017f3049361666333142455746f19279af296381e

Analysis

max time kernel
2418302s
max time network
164s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
20-12-2023 08:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

925e8f615d785476093b838017f3049361666333142455746f19279af296381e.apk
Size

8.1MB
MD5

7fa3df3ad79b4021b6406e40254ef78d
SHA1

3a57628fc2656090eeb3d6c612831bfb99207f95
SHA256

925e8f615d785476093b838017f3049361666333142455746f19279af296381e
SHA512

737a2fb7e4830272a6bb6ee9a47c55a7d5c290c4bf2da5fe34bf548f62f7ed9dc765d34744f6764a7989dfa645a37514cde7b3f79d769799b72ffef21fcbeac9
SSDEEP

196608:yWtan38QSnkzTtWpUSeAW/SyB2o0mJtYd+V:Pa3tYer/MmQdA

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 3 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.zeroneapps.uygulamapaylas/cache/1582435991586.jar	4969	com.zeroneapps.uygulamapaylas
/data/user/0/com.zeroneapps.uygulamapaylas/files/audience_network.dex	4969	com.zeroneapps.uygulamapaylas
/data/user/0/com.zeroneapps.uygulamapaylas/files/audience_network.dex	4969	com.zeroneapps.uygulamapaylas

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.zeroneapps.uygulamapaylas

Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs

evasion

description	ioc	Process
Framework API call	android.hardware.SensorManager.registerListener	com.zeroneapps.uygulamapaylas

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.zeroneapps.uygulamapaylas

com.zeroneapps.uygulamapaylas
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
- Listens for changes in the sensor environment (might be used to detect emulation)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4969

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.zeroneapps.uygulamapaylas/cache/1582435991586.jar

Filesize
9KB

MD5
e8e0527a01aefdb89afd2c508f131da1

SHA1
f1103e6b260c657ceb3d95f1b023af3fda8b133a

SHA256
f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce

SHA512
fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/cache/oat/1582435991586.jar.cur.prof

Filesize
148B

MD5
a3b78d197d786c13687c3f0f89703bd8

SHA1
9967f0726b6b1ed3f198904547b81920f8329621

SHA256
c5e6754556dbe01b055066f23c28ddaaf5fe67cee4baed00d59dc993335b3d97

SHA512
9a47c9bb977edec9d29d22f280e0078ca931a722eaecc2b085c6b5aaf6246d17a6ad07c9faca45070bb5b89a3ee6cf896f5e2c7e73fb033e3ac57471df70a8b1

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db

Filesize
20KB

MD5
7a9fb50ddad9a6c1f34ca9ec43890128

SHA1
dffce6197f1bdf028f0ff915df9768ce5a3791f0

SHA256
807f55af0b0fee20c66ede222b67df63022d0462c095d0b6018829dafa764dcd

SHA512
34d4aa59e10730b75c648c2723aa19f0c1eb3813ed11a227ef65c2930400ea3a0bb012ea33105481232ff75a19b3db05c8a3f1cc83ce09218f9a80e2e9914633

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db

Filesize
28KB

MD5
d54be34d2fb20daed6534af60105996a

SHA1
84f55f1a309a940a36ac05f2c9c5beffbaafb3f0

SHA256
28c4d0181e8b91d3be2657262a6c8a119065f3960801e7f4f2f8d36c31da1a69

SHA512
f18dbc5e5b82e82a855ef46f7dcfcf0f5981d7d093925bdddcc646281c9ca66755f178675f76f46441c7cf38e90c8e8a8bc198ae72e3ddb039f8182d03e476b7

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db-journal

Filesize
512B

MD5
b8fd2668d0e4202ea7bad082d59238f0

SHA1
badca512866832fc62176a187db60c077fdb715a

SHA256
f35641111eed727a77ba29d7bc9d8dfb831957ad89ace80c91cddc4a3d1a27e3

SHA512
aed73be443872d98e9d5f1f69d5bad739e208a9e95f758535fd31bc86017ba0c7ef3ba372ded5550678aa697d0265e861156ed4d3c5d093324adc9860ba7c309

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db-journal

Filesize
8KB

MD5
d5f864d67c4f5982778c5e9bd95c21fc

SHA1
da130f2fa3b67f55bda5101773f7864960a9b33a

SHA256
85af5ed16dd776a0093375aa99984c361780155bb60024134e35049c13fecac6

SHA512
fde0ae520755fae55d38b37d7ce5f721c6b72df879292de126bbbefd19942f1cd298e61e7f33e618d62579bf665a82e3dac98bc338a6b47d7b27fad54331291e

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db-journal

Filesize
4KB

MD5
15081492557b61a59b1d4cb09e737829

SHA1
a851ffff66e4902fd905088c66973057df6a7fb0

SHA256
331c2d4117874ebab94d053638c3bf4b81f5046c8c12dc2e6f3f41812ea3e186

SHA512
5b927977c33645ebce9d8f345c1245251b376194ec15b13acbe2c06f3cf6f5c81929a56752368464001811b24cf5fde612df4de790efb7984d8160ff03593001

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db-journal

Filesize
8KB

MD5
9fda583a920c05d750afd9a50d90ee68

SHA1
b70c439b1e84140e969ff6200786e28fec4c32b5

SHA256
8c0d7a1b705405a7582dba9962dc0c8a92ced048c3cbd278dcec14d955f02946

SHA512
04e8dd83dce350ae9529ecb239826660c3f8821e7bc30c078b4f6e14f9f81226e5adf48133a0bc82f079ff367c5e4cb9a3851f39c6796cb87684066c61672a23

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db-journal

Filesize
8KB

MD5
0936a1c5e7e14d584a60c9ea1e86a8a6

SHA1
17de176b8b1e3fa2cc91575a9cc13482b4f9d80b

SHA256
d7d392a901b4515ed06b7f42d85df4f7ae795846d9eb757e7f87f025b4462563

SHA512
47ded54cb2749d9710d64cb6e5a2810ea68db4bf3fca8ca3a47d38b7a1d92fb929555cd6d218ad85f092b93334e83425a2b76c85924afee7b586cb589cf7ec3c

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db-journal

Filesize
8KB

MD5
ef4431c08bc8cabde6f46fa8171fedaa

SHA1
6f62ae1df313adb756e1b622ea44630d41275d8c

SHA256
8ba05fa2436378fb76e9d019554e67ae18c7db79c32ab04b117b0b5e83c65714

SHA512
222196533fdeefc5121a08062b94a22a0c198faa55e2e7695799e4a383332939c354a192612c515371110b8ec5c7b241ebab6c5a30dc9ed14400bb5d57a6f906

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db

Filesize
16KB

MD5
50d89c32720c35c61d5bfd1e20bb09f6

SHA1
98dc6dec2a6781ec231350b959493dce64d356fb

SHA256
cb6a091a06e4bdc51b09f97177ddaa3b21ee732a5dd375a785fafd20e50253ef

SHA512
7329613b2bd50cea1c256e1b704ae647223ea0565d21319b5ed9d845cab3c9f8a6ff7d0bdef7265a9a6761587c999d3cd0549d17da3b070fb7faa5b87def1cf8

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db

Filesize
16KB

MD5
982bf1fda37964f481c1d5162b8dfafb

SHA1
496d0c8f282b84b2ee1d0e1e9d9883f0f738c3b2

SHA256
770b41959b45a2a7f9730056b908bf5ded704da3ab2cbfd087d625589e7a67ae

SHA512
c130677e9b65d12a5e694c308bf8467f6eae3319c241b8a035307d554b54761c90a7dfa01d52bcc3318be2a3c21e19cdeacfe4021c48bddee7850a34d71f9389

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0223525e709d574c416950540a76ff94

SHA1
8bd51d8b31dff29e56c08808f91b93235005c751

SHA256
db2e07973ebb9857f4bc3e5679985e4e4f555dd84e81e41ae697e295bdea9b6e

SHA512
0f704b6284c6ab7dc9128b1169731bf766d34466b093e37a05aa24afb611717e1203e9aea6fe0be916aa329bf53ac2754f2925977115de7a50e432a2d9142b59

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db

Filesize
16KB

MD5
16d25bafaad6d158417c16a475df3342

SHA1
19f5f3ca61d8e6187df7e380d2101d29617b6096

SHA256
fdf55fb5d0d0c487f44f35136c21584ba466445659653dccbf647d68b789d051

SHA512
f197c7ab1d5fbe0baa123a69dc07daa3b1f5e083993745fa190547601ef4109853f6476efc9ce00cb6d5ee60f1a204157be5081cd312b93caef3dc97574fbadd

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
70d80bd46fa7dc5eb95484e989f4a539

SHA1
2e89cb550870662230bb99ca9402bbdeccbf8fa7

SHA256
6cef512e60721de60c6deaeeb94d3876f2f69bc84eb4d2773d40424814618fc6

SHA512
db0e850eaf2c9bd1d9c6d4ee23eee75e8f930f3fc5ce1d95d6d10f61d29b9c64d7d74539b20661921d1552e0a9090a281ff2f61084b78367a2174d80f6d86692

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
dae32d19ae3fc62712a7d9dd46fc6c9c

SHA1
75b163a46450568e8455947917ee3734cdec8270

SHA256
b26231cca1d73c56293a83544a83107fa6e55197418c58f28798b1a503f33b16

SHA512
fb56ad9485fc339a9255b3413aa28da39dd5611ae91ed8f7aca1ff6982ac4ecc5351f4a73a0558addd0a18a0a2cbdbded42786f0aeac11a583d24df01bb3cf76

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7806cc9ed1307768a1d871b84868052b

SHA1
bd789c3adcae51052ce3e71b3faf72ee4c5d64ce

SHA256
4bd2c22ceaf7f9a98da94a4c31d31f47f743f269cfe62a74814e16b95916ce0a

SHA512
9518deffa755cf073d9bbde20f0dbd9e12d39907f9f318a894ba7a2cab7863e703f1c58078eb39e25c5621db1c9a8610c4ae763c65e28d39e4c2d1b80f56955e

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
b185f7c122872b67457b2a6e90dbcc5a

SHA1
a9ce36c85105547b7cf5dd8cfff1a159906d52cd

SHA256
c3a0a112ce0953c7c41beb619cab3d02949f7b150e5a5efa9d422a4c4e48d83b

SHA512
27aa59d889c13911bd59489275b61cdd94bc2e26a1e4df5a6ec77837bebd5ae0083d3089083245b0c1f908b7c7342643202a173fc4af476a939bea07c8cc8959

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/files/audience_network.dex

Filesize
385KB

MD5
572a7f80a0e67ae3f5ce5dab94b881b4

SHA1
5a9d4add5591bc80596f47ea2875bc02c655d325

SHA256
4f261b02f6ad512bb3995cf5c665529d53f5c2e94c1861528aa54eada9e9762a

SHA512
4da52ba92c2470ec37a3bd08148764e7268650ecf1bb5674bd336209ec84ed89d5cf8b503ecec26229b510744ce947e9bbffc1071cb1aac192b8a786da9f0b99

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/files/frc_1:995102842809:android:1d9b1bbf6fe4c559_firebase_fetch.json

Filesize
160B

MD5
65c9c629f2d9d8aa16d6216ead110b8c

SHA1
56be6a268147b66db3c9fe556ec32263e079fe11

SHA256
066f95ce5a802594bf261d92dd1cd5dc09836264154fc426bc24b1ef6b48101a

SHA512
1c61797a351bf930ae82c3eff73674356f340e1e832b3dd39911973d27c0df1d991d402b1bc6cebb33b02fc5781b63d15af161c3c92a21c734fd569c2a498ece

Download Submit
/data/data/com.zeroneapps.uygulamapaylas/no_backup/com.google.InstanceId.properties

Filesize
2KB

MD5
badf30551ce694a0ea333a3fb9b7bdba

SHA1
9065366a41bbf88770a2d8618068ecc141be08e1

SHA256
154fad598f6fcf41fab84c33da195b1a5f5fa5a15f329f80d9f759916cdd4a80

SHA512
a816f6c9968d15b74d0104ee4242524b6a9b56bf63abd0fc68c7f18d174add286c52be3c8e01fda2a747ad696fed784d944ccca77909291e222ef27dfc0fa711

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/cache/1582435991586.jar

Filesize
20KB

MD5
fde2ee00cbd121cfab5290b078aa3ceb

SHA1
e2b77d5320e155e413d040a8c20020962065b2f8

SHA256
2897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685

SHA512
a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/files/audience_network.dex

Filesize
1.5MB

MD5
37982159fc58abe0c52fa11f5500f2ce

SHA1
0b93b94af7bf3a112e18f56bc43387d943c5043a

SHA256
04c39dfc7f8613151eda03eea3f25a4c986dd07075fe2dcfcb71ae69b6162132

SHA512
72ad23185f963336bfdbbd6415c9638f90fc0da848ea6f94f45b3d4f5c99abcc068a377ce8fbe0964f2c447256d8a389ddc16f6ba91fb376564696b72f00ed91

Download Submit