Analysis

  • max time kernel
    2528853s
  • max time network
    145s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    20-12-2023 08:04

General

  • Target

    92aa60b1b2c69cb462c519d23ac2ed2e47707a32adcac7a9feb62449c88910a3.apk

  • Size

    2.1MB

  • MD5

    0cff13d2f2522b9a6bbc25026f418d80

  • SHA1

    6e12217939abee5e22190d34a56dfe344c48f168

  • SHA256

    92aa60b1b2c69cb462c519d23ac2ed2e47707a32adcac7a9feb62449c88910a3

  • SHA512

    d43df4f752d6d285c20bb66317da1e307037f47fdad1bee572256f5b645e34eb6a856c3a04802b89f6334a2d7586f7a949dca38d69c8bc17ce121b40e4b640d8

  • SSDEEP

    49152:h/UUFUd1bI0rnN6deC+QAEO2Y4st+a+/c+8ShznEaKm:pDFD0bUwXQ3DYft+bk+8mzndKm

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.

Processes

  • com.psiphon3
    1⤵
    • Acquires the wake lock
    PID:4240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.psiphon3/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/data/com.psiphon3/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    80509697207b93143622f6c5afbdd093

    SHA1

    58a1bc922600034cc4f8554f07550dcc1340900d

    SHA256

    710432277f0f330712c50942b41a3eb9b6c058965d46b0a642e1bce8bcff1459

    SHA512

    5e9e3ccc27633a567d56d9aa1fec0d8489e47f871d59dcb9a58353a4c45f1ce357e27c46e7926c4311c606da3f9ef645bd85861fa7efd9e8531ac60a5fcfabdd

  • /data/data/com.psiphon3/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    461aaba4bdee22acdf1ee89d21acac94

    SHA1

    056c1c7fe2d173124966934a4a58d8e869feaeda

    SHA256

    797e9908f5da9cc2fdd422aefcf684be7939dcbe70329ec29846ba320be805f0

    SHA512

    a44dcaa61f18398056ee95ffb2005e8c549bf15ed1aaac17c53c0c97cf38d81486573dc510928c6baf60fc71f60b7e78b4a455c6237f6e3793b54f8795a6fc4b

  • /data/data/com.psiphon3/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    32f4860eada8d7d7035096905246fc31

    SHA1

    030261972feb9d9a277e4a5d4bbcb68f073d24da

    SHA256

    052b69ae442eebd661b442a36713739b2db6b2a6cadd1b71e8823444961e0d39

    SHA512

    32c781b57f175391532634e97ca0f3e73bef2cf6985fffff13fd7507e9ca3ba0a1ed24a1fc5c16259336b2310f1106fd921607fddbfb0f5bc9ff5be478ef56b4

  • /data/data/com.psiphon3/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    3e881d9a01ca707bed38018ac69f4518

    SHA1

    5820f9351d7cc8082de6e5686eb9f8fedf6fb830

    SHA256

    4a5bf9bfe9b032546f886dd5fe6717de78716734aaadab620c0444ed6df5151c

    SHA512

    8f0395c94b3a449f3c61e7117f400c7b8a12c23d3655be6772bce2c8aa0ec8d8be8000c5cd2c6e10b334ef54a4add5583717393c3239da80c334c45b8b392db8

  • /data/data/com.psiphon3/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/com.psiphon3/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    5dfc79a75000244b250696a2d72a762f

    SHA1

    b7975c066efa52cc995cbf51224f1981141187ea

    SHA256

    a857fdf45361814da5487810de4eaf692d47a49073df275bd57a501a3c149730

    SHA512

    7cb8fa192e9783dde62d5d1d7b5019f582c34b4227a18ac356a9ff9d53c46bf059bdf9d7df2d4672fd49679dcea77c9d2062a9dc7a2c195985ee96b60a423b57

  • /data/data/com.psiphon3/databases/google_app_measurement_local.db-shm

    Filesize

    28KB

    MD5

    cf845a781c107ec1346e849c9dd1b7e8

    SHA1

    b44ccc7f7d519352422e59ee8b0bdbac881768a7

    SHA256

    18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

    SHA512

    4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

  • /data/data/com.psiphon3/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    906de563b396d6b443d1ffd48d072fcd

    SHA1

    4e7e9146d0bb001acd2b8dcc48aa848bbb3bc33a

    SHA256

    2ed11c8a31c684cab713fa1e1406a944d4f23184b85b0f724f9bbac8d9cb71dd

    SHA512

    a67744bbc9b4a6ccd4477f7e62927c589c19b54872bbb50f24a429b2793ec93ef98ec75d104ee0c31a0eb1341db078e2daa353fbc2322be85f1b10e385fa5efc

  • /data/data/com.psiphon3/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    89b729f0feefb6138677581013aa5195

    SHA1

    dabc79189f0825f78c6dea2f14ed7e559f91e0f6

    SHA256

    0e092453deba9e3502350829c5017ea23b8cd5e70c6c19704efa44785535bb97

    SHA512

    329d552b636c12c157062e2ab7df250b816d11fed0e5cc9b09fc0fbe2c431850459fcbb0e773d0aa742a4934874b17cb6b808b4daedf5dca9e83af973a826730

  • /data/data/com.psiphon3/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    a4e1a935a8fe53bda68a8f9533c09385

    SHA1

    9f1dcdb4a5e17a87431e216b9abf78b1a050f3f9

    SHA256

    8bbae716e0fcd4ad2f381b47a48bdeb19ce7a668bdd83da94b3f5141eed83c55

    SHA512

    7e46ddf7aaebf9f9ff9f140b2df77a988800d744e39508ee041eabe69c684db62ec64ecbed71a69c93f4747a13b1777b78d3eb56087355ed2adb074b3aadcc20

  • /data/data/com.psiphon3/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    735a663ddf52080faf1e05580acc9519

    SHA1

    d0faed0e6c86dd5d3566c4ceed7428e6c3631409

    SHA256

    0cfff1cd4afec62d744b47d26510d10e5c1750a0a1c9217727a4ac6669d8032a

    SHA512

    bfc0391dc65d6a28b32d844fcc739335e658202d93fb625b1b56a7dbcfec1972b310818600db5d51137acecf1c8fd0fcc32d8e64092ee23fb260986fb5b0f3ae

  • /data/data/com.psiphon3/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    371ad92f69ffb3ebc951127aefc5ff0f

    SHA1

    8c300b92dbb28080d7cb7c403ce817063bbaed89

    SHA256

    ea56aa4bea9b10ea372873cee5861b80eb1e560259c6f02efb09209381ec07e1

    SHA512

    5650e79311b960ec707dffe8a41a9bbbe099aea36a9d7770169ef308d96c0a65abb0aa96a9062d20ee4f0cbaae594696afb076de457a459dd701d42452872450

  • /data/data/com.psiphon3/files/PersistedInstallation5066696687188723887tmp

    Filesize

    572B

    MD5

    b57a99c314c2bbcc8ac34dcf7f871a71

    SHA1

    a3210ba7d4923479ef50dcdf6b84f966ebafcbbb

    SHA256

    30f89c0a3186ac7ddf5925ed1e64efc9b1de5187e6aff116350efa3770d21c8c

    SHA512

    48c96ef6ae4df96d3653c07e12cfac177c5f581211c4883de73f29a8e3694db8a1a7e338ed3a9580c16d504466cd566c85a0ee920623b88b4c33d5ada50da6c1

  • /data/data/com.psiphon3/files/PersistedInstallation5147869164213863598tmp

    Filesize

    90B

    MD5

    4c390053e21b88bf7e76126cd49e3d16

    SHA1

    3fde3751c5afc898a3bec52ab39059f0e08a13d1

    SHA256

    fd22673032e48566f7a337129ba19b176a282c3a667e0326bca76ffb54028d42

    SHA512

    e1828637a5719a8aa8f9ebae565c78fa51a7d3e71f298cfc29810681184f9d33680ed5dae28829f28760c5cf5c25aaa8a72f19d6aa1728ae6871076d690e17be