925e8f615d785476093b838017f3049361666333142455746f19279af296381e

Analysis

max time kernel
2418313s
max time network
168s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
20/12/2023, 08:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

925e8f615d785476093b838017f3049361666333142455746f19279af296381e.apk
Size

8.1MB
MD5

7fa3df3ad79b4021b6406e40254ef78d
SHA1

3a57628fc2656090eeb3d6c612831bfb99207f95
SHA256

925e8f615d785476093b838017f3049361666333142455746f19279af296381e
SHA512

737a2fb7e4830272a6bb6ee9a47c55a7d5c290c4bf2da5fe34bf548f62f7ed9dc765d34744f6764a7989dfa645a37514cde7b3f79d769799b72ffef21fcbeac9
SSDEEP

196608:yWtan38QSnkzTtWpUSeAW/SyB2o0mJtYd+V:Pa3tYer/MmQdA

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 3 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.zeroneapps.uygulamapaylas/cache/1582435991586.jar	4621	com.zeroneapps.uygulamapaylas
/data/user/0/com.zeroneapps.uygulamapaylas/files/audience_network.dex	4621	com.zeroneapps.uygulamapaylas
/data/user/0/com.zeroneapps.uygulamapaylas/files/audience_network.dex	4621	com.zeroneapps.uygulamapaylas

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.zeroneapps.uygulamapaylas

Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs

evasion

description	ioc	Process
Framework API call	android.hardware.SensorManager.registerListener	com.zeroneapps.uygulamapaylas

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.zeroneapps.uygulamapaylas

com.zeroneapps.uygulamapaylas
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
- Listens for changes in the sensor environment (might be used to detect emulation)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4621

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.zeroneapps.uygulamapaylas/cache/1582435991586.jar

Filesize
9KB

MD5
e8e0527a01aefdb89afd2c508f131da1

SHA1
f1103e6b260c657ceb3d95f1b023af3fda8b133a

SHA256
f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce

SHA512
fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/cache/1582435991586.jar

Filesize
20KB

MD5
fde2ee00cbd121cfab5290b078aa3ceb

SHA1
e2b77d5320e155e413d040a8c20020962065b2f8

SHA256
2897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685

SHA512
a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/cache/oat/1582435991586.jar.cur.prof

Filesize
153B

MD5
f9431a0cde5766b6a47fe517f0dbe91f

SHA1
41ebffb9e03db4e211961286e6c233726d1c704f

SHA256
48409024aacda3669e2112419ca8742dedca12f5310521730db60c8387710616

SHA512
3102a350b8cdbfe686564eb79892a609f3cccd74d4b420f831156b1c57b736853f1cba0988d4dea7bf728f341e3ed2b997274684726afa2d97d31115e5213382

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db

Filesize
12KB

MD5
f41f531c07d4141546a531ff9caffdcd

SHA1
9dcac5aed06972d0ff6bd4cc1f1cdff85b36d3f5

SHA256
bb8dee5b5c3779f175abbd142722eb0022b98d374783aa80145b34614a4de646

SHA512
e0c8d1a820cb4c098e45776e8b50ea8c83944ef2e3f005cb0acbfc07688974d370f78100ae022f62564fc4c12acfdc43b710c18ca1c30f4f575bc08b9b12d2d4

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db

Filesize
24KB

MD5
98a321ada3b41d67f199bcdc8c7839f3

SHA1
ea8265965fa87b0a20016fa631847bcddcf90720

SHA256
4ca1982cbf7f11704d194c1137c8275c2b3ca56c627f066f04a7826a29257a5e

SHA512
4179d5e2c55f22d8ad84279993db9ca79f3a09a74d0737fae6d0fab88f95c9d48a616fa43acefb4e0f3f94d421bf67a95a1f67984591f30839e0f779aecbd90f

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db

Filesize
36KB

MD5
80b79e15483e4241e395fb157fdfb609

SHA1
9840ccf4322c74780d68a5c65283ef8b86086851

SHA256
87635e506c392d783ada1a933646fea423c2cd0133cf55b8a9acdae2ac479f0f

SHA512
a800d8363a0a2b2188bfe7df48cc3073289e322c919cc83de281680155aff4341b5aa0df9edf827612ab433a3483b7708aa30490beab30fd7a1a9eaf4132019c

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db-journal

Filesize
512B

MD5
c7d93762fee8d59ec4cbc7a97843f1f1

SHA1
45950a4f59034a12bf4176aefe6cd9ae987b7edf

SHA256
9e147fe88e8ec3906e0c2e5dde234bab4072012f882788a90c9db7c5bfe97dac

SHA512
7224386b8fe070f6dcf47b45b9b9f0498c00c2e277b7cabd3ef9410fb369a2ab328d917ac26e73f53af8484a654d41649afac24c8af75708a0d989d10675f469

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db-journal

Filesize
8KB

MD5
813de931d6ac3421de240f32a9d6a293

SHA1
537364e0f4652de340640b12f33730c61a759f71

SHA256
7224debe0d7acf5c2d9a49ac11533923a85cb8fa4062b63e8dc43dabcd65d995

SHA512
d21c513a0e2ad4f1130c7b4fc16c2b984c4dcf2a80c2178beb1a7dd112fa4f364d35efedabd0a0e4ff682da6866c01b4a3b871e06cfeb245270450f38fa5e8a4

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db-journal

Filesize
4KB

MD5
be0a83158790c14859be056306fdf2c7

SHA1
4510cfa92b0b1744dbc8f8c2f3b9909752b7ef22

SHA256
8c83651afc5fa1b5d79b83b6d4cbc00605146c2d2b08594790b52dd3c46e0cff

SHA512
0747c243d405b4a721ac566ef5bc3cf9b536a6552891e6700a8a79a33d72673a28248823c410ab07a2796d18bcbf2c217b31d7eb88ec0952c4febf6c7b4bde20

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db-journal

Filesize
8KB

MD5
58bc7006416efd11caf65fb79f0cfa93

SHA1
4f86940286c289144c017cd55a365a8de5d6030f

SHA256
93251530717a2e5a64ac43d640aac43252612742483fe8cac1cbddecd5a8b5b9

SHA512
f5ed3546a21f1ba9b68c21f6a3fb3b5c145ab41502ff17237456207d72f4c43517a08b2f557d2d35a5931f595d4c175f279e583b5eba9baf3637749274451803

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db-journal

Filesize
8KB

MD5
7ebe2024d7b275974ec0454aac8df061

SHA1
e814c24dcf1991077d07e9a1b4197b23c68aa2c1

SHA256
d15369f08e3bc06820bdc8c76cf746e8a1ea72ebf6eaf6989d5677f4e4ce5b8e

SHA512
b6e01c91118e639d0516e2d50522dd346386dbe734d2282653e6013b5a05a5b073a3eb01e3673b161707a4c7372ebd21354a29aaf7c5cebade1c1886a9222a34

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/com.im_7.2.2.db-journal

Filesize
8KB

MD5
19e70ff1db4f81e6f4b9f133f4e6a923

SHA1
9d3abb65aa5950ea802ce78b1ed47ca3d0a2de5f

SHA256
69aafdbfd955ad87a2071d1fc394ecb91f92ec82f2f2b586ca378f0c9aca79bb

SHA512
3311f78074656ea696c0b9637621fce5d0bf16fc2169df1e72a45a0e3dc173940b5c28abb4dc1e26ae2f303553b5d73c15b622497f9d91ac6fc05c5960a5354c

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f71fb40441c08518b61f4058918cff83

SHA1
78201ae1c7bd9e16df157305f64b76a1ec7d1d26

SHA256
620a696b11750cdb5082ce42a1f4bb07541c848dc288a1a684c49b60a30823e2

SHA512
99156a5ecee825e8b622525de3d122cdfb2a03cf5113747e9506753ce2f0fe458f1f78f60988f796eec1c56360a3122cd5f5eb1f5699a6ae5476e71fab8236d5

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3ea106e4e480d317d689e85b2c3a9d66

SHA1
a218cb08ff5d32e1e262a7a63cc2fb7b4cea494b

SHA256
cebcbb8f6c13deb4aba54d743e977652e6dff207d012999e14e86f7ad74c0acd

SHA512
72c04770f6388973c0d46a4c6b266152b1406e5fb2e997d1a6734a0d411397fbf947f885d340a9df91c7a69ae0cc32643ebb5a8e6e4a5ddc7f617fad62759374

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db

Filesize
16KB

MD5
ffd3543942edcbe42e25b4afd117b16b

SHA1
31318ea506664d186f7d3457209beb62a9ff4d57

SHA256
faeabcf00068257fb0ed7235ab0416e3a428daff5176e082ba3735859e5525b3

SHA512
aa04075818e60591b043f95c6a9c72efffb8d81f14b3020d38712c11408c810d5d319cda60d93f1c35bb568ef0a36e4dc7c6217684a7c7faecfdf8593f0e473f

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8617d88959a5514d6b88d18549ec0e7f

SHA1
08beac2960dfe8ac8ae21c4fedb8932972697990

SHA256
0666544db460bb8ecbfb7198622a5a71300220c0e6e9e0ba550dad6561653b30

SHA512
adbfdb78c08ff2a723b89ccfce66f8360e368a9bb1421c9b5cabc4a1f5d495db1a7bd141be803c487601657d3897844efb96387f41130cf83ed5be69cad4feaa

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8d0cd16581ff038bbc5e88cff4e8ad97

SHA1
af55a06a1a75e0c5505b71c89a4959095fca7b51

SHA256
bc034e9e3e9900bd23acd68a09598e0f4fc6b44bbf09c889e1f21ee4a6094e89

SHA512
d3aabd95a96fb1a86bb7623b90df3cd435f2897f59926296d8df1a13616b7f1570562648777a3706cd62681367727247e006f9dc503868d660e87ab7e6ea612e

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
76f678ed424a7440a455532e837025c2

SHA1
b49a1587353574596ff3aca3d4bfad8f8867369d

SHA256
175381ffa3faba3ad757488c8632aff448663f608016c8ae4c4b6d334fc71364

SHA512
902ee2fb355bbc61270efe62c6de3b9ee540a9ced0f80b67539fb3a896676c13be62d06dd877f5dfa7791ed66a14435267a96e6ba7bb2a9ebf52325f75c41614

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
a303daf2a9bc956926434369630fb4a2

SHA1
b0cc4b5759ecc826289a9f24d8bcb7db5cb923e2

SHA256
484b3aea8254b2850b961a61876de63259a718498afa7744e1e3a84363791ee8

SHA512
f84ce663b4012ae931d0418396dd8b233526380172e8484711c34976b8bd4cef1eafe4ef98c0111d28244e2769f809e86c927d9430899cf72d4e7be935dd28fb

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
1e20d653fa1908badbb745b947f3ef84

SHA1
271e5bec4a896f09012c759edf75b5d7fa7c4a7e

SHA256
d235e246929afa76fec03208fd50d44695d21ee97d29a1d803d47bd29c716b8a

SHA512
cd6ac58c795056cfe43ee258ce07a98de1e1bcbe1a4a48ca0aa3e52223f97f84eed582734434fba10ec55e3b1ea15d470815f2347bf4aa1b49cc2afbf69543be

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
f9fc4643da37718a771dcd693fe7401d

SHA1
8a15a6d196f62f22b12d7679557db557460ca120

SHA256
c541c27d58e12daeb19b9dee9f22b2e647f871bd84dcdabe4614feff151ed825

SHA512
f03f34bd58511444f34fd73dd21bf2b30be6c44ea97525939abdbd9c439388d3277539e3f4792874e68269365473f076030b298f74329a5a128eeee95548762f

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
fd02329dd50752e10c8dd79cbad686bd

SHA1
787be7b78aaef0fcb0bded09acb98dc3be1e610e

SHA256
c9eb6c7e25f6ab83e76c8467b31a87c7d5526420a4b6de51de4f862c75171f33

SHA512
507c371b5c31065e99f555d0d9271705478f51dc3bb69ad8d73184aeb3a9ea93faa1b791d95b1225ffc6ba085bdd73d259401f6c1f625520eba90c6c0840b577

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
64771264d8bf52d517fa584b539712ce

SHA1
ce70fe8d67ad7ad7fbd755bef90e43f5a1852fad

SHA256
3eee7e2f7fdee9dd765a5c185e6e2a139c9f2ca23d13b270760c6f4a6ec3628a

SHA512
64578c60c5e0a84f7b95a00f58f7d35deede5a04fd7a11ab9283d9207837a1e7c9c46df8d01f079aef02df7c7c6a04c1543f787b6ba26d9a830a573a4a54e9f7

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/files/audience_network.dex

Filesize
1.1MB

MD5
f6d46fbee7bb46db7f0b1ef0d5597fc3

SHA1
43efdea374e1db8fa909fcc63bc2ba44092fd745

SHA256
4ee70dba183c07cd259546e0ff7a21d4bdf51732e1a2ea6083fc131f0c6afcc7

SHA512
f2c6bc743118e78ea9546e3d9b27bb2493f9a9ef7fb6b4e68498b7632299a0231e614ce2fde383323d1148e3aa9e70841ba6d62f5dcbddcc6b86a994e5e05f46

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/files/audience_network.dex

Filesize
1.5MB

MD5
37982159fc58abe0c52fa11f5500f2ce

SHA1
0b93b94af7bf3a112e18f56bc43387d943c5043a

SHA256
04c39dfc7f8613151eda03eea3f25a4c986dd07075fe2dcfcb71ae69b6162132

SHA512
72ad23185f963336bfdbbd6415c9638f90fc0da848ea6f94f45b3d4f5c99abcc068a377ce8fbe0964f2c447256d8a389ddc16f6ba91fb376564696b72f00ed91

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/files/frc_1:995102842809:android:1d9b1bbf6fe4c559_firebase_fetch.json

Filesize
160B

MD5
0f84de1d90ce53ff036a933fcd33efe6

SHA1
fc10df13f291589c06232850e25f0c9a199f272d

SHA256
dfd6aeaf0938cc8d74b1b7ff3978f352a6a581cfd2a6435cc8f95e933216636c

SHA512
dc2ae35765370aa000a77a88ae99c7f773ea7d30f41a1e8ead5fda83dc981bdb6a08875360bedfd720e63aab6841380d473feb3296232d3820a88fa5bf88cef6

Download Submit
/data/user/0/com.zeroneapps.uygulamapaylas/no_backup/com.google.InstanceId.properties

Filesize
2KB

MD5
3b4a9cb449484956e0724226c49b3184

SHA1
c3ac31cfd2532c7a7159fbd38501a8ef4f59f6d6

SHA256
38253f3440330dcc9f218632a7155b3a258853b4061dd84b178aaff284e48676

SHA512
f340ca3fc131b74cfba4b5d732231eb1ca8f96b1de832c81ac9c7dd7661fbe8243e9e847e24ed21e1f60ae1836fb845cdb73de4a1bde4be6fd800e5403f256a9

Download Submit