Analysis

  • max time kernel
    2418744s
  • max time network
    156s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    20-12-2023 08:04

General

  • Target

    92aa60b1b2c69cb462c519d23ac2ed2e47707a32adcac7a9feb62449c88910a3.apk

  • Size

    2.1MB

  • MD5

    0cff13d2f2522b9a6bbc25026f418d80

  • SHA1

    6e12217939abee5e22190d34a56dfe344c48f168

  • SHA256

    92aa60b1b2c69cb462c519d23ac2ed2e47707a32adcac7a9feb62449c88910a3

  • SHA512

    d43df4f752d6d285c20bb66317da1e307037f47fdad1bee572256f5b645e34eb6a856c3a04802b89f6334a2d7586f7a949dca38d69c8bc17ce121b40e4b640d8

  • SSDEEP

    49152:h/UUFUd1bI0rnN6deC+QAEO2Y4st+a+/c+8ShznEaKm:pDFD0bUwXQ3DYft+bk+8mzndKm

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.

Processes

  • com.psiphon3
    1⤵
    • Acquires the wake lock
    PID:4466

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.psiphon3/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    1a9d1957c3eb25d8f0c7de5948f20dcb

    SHA1

    9376c711e310a4e859096ca00fa167312fb32f22

    SHA256

    9f7a0e6be48dcbe6834f865a3234d2daacef06ea5567d966fc12c26ccaf2e98c

    SHA512

    ceb4fa2968e59a753ed7de8013fee635aae1bae205de22de75f5f384f3d8045a3a021ed644e66b4e03404a076ac5357c1c77591fee6a3de504f940f26f98970a

  • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    afd5f6b92337989af3cb39f23f05e871

    SHA1

    0d2519cb224e1a516ea7ee1bbc59e90bcc5b0ebb

    SHA256

    55c1af9926dbf65a3f4d008b1bc230e6ba3443cce1487a4aba2e03bd4b053253

    SHA512

    203131f7f48b807584852a79892a71d8cde0981c9b0f121506fc082a48e5576fe79ca9397fb4493e006c040188c9a3bb9beceb7096db3377428b1047e43235a0

  • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    224e86cd90ed121a49edeb0b429ec57d

    SHA1

    74b46cba35c61bc4766b73c4da64aeac1910c04b

    SHA256

    ad990c1a75589f5612b94cedefef2c5205038b34631a1ca164473ce5ebb18332

    SHA512

    46675f2c66fa7c005bd49e4c93a5f1225c1b44475c33642f75401752ede8ae4466d2ebdb25e6c0e17a605d3144bd4fc96c51431f3334cf601e95a1339e6b5be4

  • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    c26c6a307c33f2e38ae39d4579c97aff

    SHA1

    bcc62a7f70582e7ae057373b64c61d9ec4079dd8

    SHA256

    cb2fcd30c8e2490772eddc49e226cb2c2d2f5158501fc79e8023928b798dd490

    SHA512

    bd86250341a221c96ecec02463d2d14510911cfeba82006090795a72ed89b4cc9b4da77c3a07f8f52a3dc2a0a7494659e7c9d9783762f2508dd29cb446592af9

  • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    de82e2c94d2718988804b035a46d17b1

    SHA1

    705f5ff19093ad209f2a666085d6ccaed3bf58a4

    SHA256

    29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

    SHA512

    68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

  • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    d9cf75fdd1c2292d986f6c3d5d60f2c8

    SHA1

    07ecb1d3a26d952ae5fecf54f36699ab498510b1

    SHA256

    2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

    SHA512

    442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

  • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    f8ebbba34470e55b1aefde5f968a2577

    SHA1

    cf8e78951cd39565f21196ca5da61a281df101e9

    SHA256

    0dbede7f9cdcf0a22bfbff732ac24f2c0e4099bb58d22e8f04b798696b97004e

    SHA512

    bf7112af49b2986f63a4d4b48bfae2e0c887d5d69b93f17d367f1a565aca2bd64f4fd6cef43a069f5adcaf8432a88ad4be72b62cc1134e98f29f892b26aa7395

  • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    bc32fb2e3ec903aa2ec72a06318901c5

    SHA1

    6b1d32c3e0bd7191e315aefb0f8d45a474247457

    SHA256

    332dc38fc9d466a472216f1a78b3b25fbed6b15ca7df939bcca093eaeedb0a75

    SHA512

    52121e778a532abb4988271ee07ff10c5bc9ae71c2a137311688ae7377be9ebe90d529d7158a6e60726069437e0bdd97433513235019f1c6f7fb6d065ae93ec9

  • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    dc44231a2047f5c38413e4703bb53523

    SHA1

    a78c21e3ea30b2f020b7a98c32a4de1a06171772

    SHA256

    932a5d868a3473857997a218a43ba85c88cc9a5a265564109ed87a7191166e03

    SHA512

    07e6decea43b3ab4983960c6c1c8876426cb4e0b70bb99fa0cb2049993b8628d8894612a321558f587d93d556a6c5d4593e24d1a7f5cba72103bda2f12fe5f06

  • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    7a903f6b3e641cf57a65cfef6ea6ef4a

    SHA1

    e76faca7c00e2109866320612e8333c2c85e1d62

    SHA256

    8d2db49f2c59050b719f7f15b9db1f33e77914a991220b057d4ad48c570e524c

    SHA512

    456ab4db7f0fc4f099bba7990906ac6754e2c1997bba9707ede22ef9c0a5dec3477a0b34902d41257bdf643a943d61859e0633b89bf1a56a976f51203efcae97

  • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    8d742ac0a0d07ead4ed606a0e9edb341

    SHA1

    95b3bccdb5406ab872e168da0fd339d54faa267f

    SHA256

    354489cb8eecf55d4749269aed0dce146b0d55f5e5bb7baad998e646fd4234d7

    SHA512

    b642c235e5b2eb6ff43cf3b1d5e329543ae7c59512d64e95cd61a3fbb1a37c88a48acdd05efb53a295f51768d9f4c524702569c66b7365931ca8c9c85dca6fc5

  • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    df57e3222c261d55136091c7353540f3

    SHA1

    9018ef2ab3db43eb277453661a2672eaf087ad98

    SHA256

    1f05a0ebc46716da03e5424ed1051d5db71b5b94cabb1fdefa400bc645d565f9

    SHA512

    bd86a12bb485411e928e764a65f303c38731c5bd00d2372fb9cdbb0c77fbe9e68ae940d7b417ce0f69db9aa5b6d230266fc192c929925bc39d0231a52d9c5ebf

  • /data/user/0/com.psiphon3/files/PersistedInstallation8418921547682728996tmp

    Filesize

    572B

    MD5

    222b318377b30fbb2f2b6e7e9f923791

    SHA1

    4926e5e61a64dcdb878638cab5738fb8e072e4b5

    SHA256

    0495a2211c614a29fc7875bb3a7ffc3b93a1b8ca6e4763eff666f400ba53fd6f

    SHA512

    6147ac85e7ccf46c8d6d52b351677ee4db2ff9bd5d28a2ed927d6abca7507260b1738e2969372144f5b903ff9d48bab3dbb1bc4679ce5d683b18362f53073bf3

  • /data/user/0/com.psiphon3/files/PersistedInstallation9203448151070127416tmp

    Filesize

    90B

    MD5

    53835f563e5e17581c70859af86a2ebc

    SHA1

    63d70d0f8cb37e83a7890bc1d18052d6813cc0f5

    SHA256

    7393ba1be8b516aa7cce0cdf0e079c76857e76e1c97e6a33e5df47f91d0551a6

    SHA512

    cf091b0bb62b349b559ea147859a2bab4fb2d2e5c0691e0402398334d7991d791de18695f40fedbb1b72fd69158e04f1ca310b1f306fcc90fd157f0586e8d904