1d72bc62ee923c8c7dfe0832d1c01631ed41e02a731680ab7c912f2b98b656b8

Analysis

max time kernel
2900215s
max time network
156s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
23/12/2023, 13:17

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

1d72bc62ee923c8c7dfe0832d1c01631ed41e02a731680ab7c912f2b98b656b8.apk
Size

7.2MB
MD5

cb0e4583f9cf26c9fd7d74e10d79f00f
SHA1

f7c656a395c75e44d0fc7573ea3df2866102c67c
SHA256

1d72bc62ee923c8c7dfe0832d1c01631ed41e02a731680ab7c912f2b98b656b8
SHA512

bf6d38cb611d98804ea339a40462239f3b2797532c0ca18090061044a4c135c2f460403dc24836e73f96f5918809fa86d4b070113726ac44ade8824e88243b43
SSDEEP

196608:F6MhvyOvMuSsK+qxqvAIfiqNJ0OW2Om0QP+RApL8p:FCg/SsmavfiqNZWk0QP3k

Score

8^/10

Malware Config

Signatures

Requests cell location 2 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	ir.kamal.gazabasibzamini
Framework service call	com.android.internal.telephony.ITelephony.getAllCellInfo	ir.kamal.gazabasibzamini

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	ir.kamal.gazabasibzamini

Reads information about phone network operator.

ir.kamal.gazabasibzamini
1⤵
- Requests cell location
- Acquires the wake lock
PID:4920

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/ir.kamal.gazabasibzamini/databases/__pushe_base_lib_db

Filesize
24KB

MD5
abe9fa56c177c65db8c072e6d81fc41c

SHA1
abe9e9bb6f7294324f549af4435f58578ae69f2f

SHA256
53f09b897033e2496e13f3c6e8d14ec1d1f7b273c2b4d47dacc569594fef0f8a

SHA512
bb1b70eb859448050dd71822652d1976456be07c098ab41f2f75fa277cde059aff0c45629564170ee07028b85d501cc941529ab06753e5be2e710692bfa3922a

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
3dfec793432a1ca06e4dab4f13fdc31e

SHA1
1f634e6915aabbb14f932086778cc3b2740d3330

SHA256
a77d1805cf4493c3c03a123ddb3f0e244b325a3dcc74cb080a449675ba8fbe3d

SHA512
f175e6799e7404197a5f3c16103bfd9f8cec564130c2569d595792ccc1fb5e4f6f2a1a0eb2bf996def604ed782916b4ef68f4b9a54868cc9545db7ab0130d397

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
82ee41fba4c1367030d23e7bad8a2120

SHA1
097b596f0fef340b127e5a6a1b73425014f67e33

SHA256
27307871cd7816fed5ae7ee2453e06634921b5b9953a7e05cd48ac4d45e131a1

SHA512
1a35cae75d5302b2b66d018d6f9da1040d4bfd2a591b7dbfabc465a3acd733ff9a93f93e9f4cc0694ab50f5144986627c7a72d04d1a1375f1ab2a7af8b886503

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
54ab157d6cd3111351dac36af53a4eed

SHA1
148aded6baf25c8b74f185041b5214e122145727

SHA256
a6a1938d509fe4a1bdb33f9184b604551e751d0d3440e7ba2683a99ea318a7a9

SHA512
59e8182de2458426df30d2b862e0090c0f30112959e685f95f5f3f541c48997c1f7be026c7b29db72777211190991cf564f513a740af2fbfa050e0130e83ad2a

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
46d06188ed478d3d61bc678101baec78

SHA1
a1124967f8dcbcb3f5361dd7408c28012a70da7e

SHA256
c4bae42e058f23bff8634207eb9bc288c4dbef994f45c335a0d72390f2927b6e

SHA512
d582e45b544c160fd41a8d3c5250c5fdb215d3ec6a8f94074cd4bc0a24f5b436f1d06f66d38141a144ba7b62a84431f8e74a45bfdc9cd109210b63d96b506988

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
14b6c47cd910b19acef16f755495841a

SHA1
16b3166250a0ffc8ba69f088c844421df27b1a1f

SHA256
49759bb77a174f5684703bf53f346af87901cef28fa60ddca6c84027350cbfd7

SHA512
929d62df7236e57b12a8bb64ef8309baef476c868b8c40b4e05c4814a6c83401d2ff7f43fad037a87ada1e61f9a4c8d5f75b940d030dd9633222d1461c6aaa75

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/__pushe_base_lib_db-journal

Filesize
512B

MD5
ac42bfb1264da1ed5834abd8e008b83a

SHA1
0b21950880695fb0cbbee20d9470b1d86da0a66b

SHA256
752aac308615655a507d1335c2fa8b5c4a33c68121ddbadffa0b5312000391dd

SHA512
4e792a69b4f639a86c0f4ff0dd003841e0a1d775d7e4bae7773481efef5a9f130223bfaf3861ca7e03636ecf28bd8a6f3c5a31bcb48ee42a5b1fe2509c33380e

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/evernote_jobs.db

Filesize
16KB

MD5
a655971edc0e6e83c35124169b04eb4e

SHA1
ab51c4f37b7dce08f4338f47a88721ab18dd950a

SHA256
2c8d2ea6f542851ab359f5fd94ef207cbff5a71f80f2961aa0887a2cf066eada

SHA512
b4d627826b1da012645989e288575452f8975caa1d5bac6c526b841c7846185d45d2d30aefdc875b5fbbada9409e2ffcdcb6956310f1b4b1aa101911e35a08d6

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/evernote_jobs.db

Filesize
16KB

MD5
8c76c67dedaefb4dfbbda7085d2ffbec

SHA1
300b9c769d2820d95ebb955d6fa1295201c08603

SHA256
a96135fc1f5a57ae3e87afa064b20ab58f41bdc62963d7d2780244b5457f6c76

SHA512
0c51fa68712198a34062acea78dda00d28606f22907019e6affd623244b44e229d2ec41b11d2c62699d962d022faa8e6a0e9539978c9cc8d9cfd09f38d60ec9e

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/evernote_jobs.db

Filesize
16KB

MD5
beddd2b42f261834946c4b6a3632602e

SHA1
793189c564824a0825d85b84a34931af2c973402

SHA256
74ee9a37411d22f41cebcd025df372400b0936f5993ae1617d347b06be6bf9ff

SHA512
bdce1dbe5951effda8d07a1d0c7a1cdf3e2bc781069a06f60a39327fd65423dcb04bd8741461c8ba6b2a63ede4ef0ba4882e4992d6731b5cb2c63df63d421d50

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/evernote_jobs.db

Filesize
16KB

MD5
eeb524b0a8d2ed51cc77a82a64995e9a

SHA1
e0883b98e12c4de7b648c5c39e693c3295ff1de4

SHA256
93c1b580491dcac6e74a40cb27a0b5744496c2dea004fb6a6f350739bfdeef78

SHA512
9d1274a4ec77dbf90551a4b3483e4df9bf88e74cd1cf9409e41fc5487222b329a10643a797029e9f513810696f23df29a500b19ae1dd547583483d5af668846c

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/evernote_jobs.db

Filesize
12KB

MD5
ea628e04765adaf4238a5dcdff4bbd51

SHA1
a801947619ea8c368efe9c006a324dc6339ac60b

SHA256
885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4

SHA512
c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/evernote_jobs.db

Filesize
16KB

MD5
9d936b95884f836e8bfed09c4adafc70

SHA1
2db29b5859a6a72a3356c086d2c84b376df208fd

SHA256
f8b8f2f4d51acb718439cdd0c47dea7cf7266ebe1ee1c54247400e994d627732

SHA512
36a40c7baa03143e07ac3eaa9b919f5a65895d6adf63f5b5704a24d003cf472975eb746d216e15fab76603f0252423fae8a95d1f97db0534d410c690366b9179

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
2c956efa50c7ab0d6e68d53401284b83

SHA1
0267d96188430b4f7227d96ccc53817ef1fc5b1c

SHA256
3cdb9b592de718ff79adb738cc41fd6aa21bbbd2c85ae3ede34c39a44851624e

SHA512
854f2e11e0a844e9de4af01665f1e9f3882954fba14f9b652485e063474ad71edca382641a9013f2e4409bf65a59dd537bc1f5c8445d68bda31f10400e58b5eb

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
d5f9ef5559a812cba074730e0e05defb

SHA1
51f0173e300de231589c12a703cec8b729a271ea

SHA256
1f9a5e19bc5f57ff6b1fc72b499ffdfa859b7f078407d09d3e2384a3739493f8

SHA512
cfef57dbd959670774cf7ff45c9f8df457d9d36fbe68239cfaf04c908571767a0ab31d4617b1742e818862ccc0c998fc5bcc21b465296286d62f4e9cf2d512c9

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/evernote_jobs.db-journal

Filesize
512B

MD5
4848f811509176675658da2f945a1c82

SHA1
b32fb2b57298a7375f892d6e8739c5cf9c613a5a

SHA256
25d9f668fd69388f3a17c8bca5bc6967c7a1d8f29ba7bddf8658a36b28e11c3c

SHA512
dec3d82f2fdf2dab72fa9c5d4fb509be361ee0db8a141787c14527ea0b898bddca6866c4f99680aadd1eaa4975edc0ebe12ccfb24b7d404a9368cb1cb9a1d025

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
c808adb4ae4c0143500509e9a67964bb

SHA1
adb63519a6ef1562cadfccefb716d791d2aff931

SHA256
8f3acc49efa55f454807caa60fd2602ae8590b5a0d0e897f4d9eb794de76fe1e

SHA512
a510d70ae709ee14cd04e0b13853b30e4ede2d9a26a359649214b75f10118fa9d3be4d3565b5a5141b30d77550b9175379e67b0a11cd0653fd36a7d00f39a5a3

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
34f8c4adfd80a0e91839310e3d8a58fd

SHA1
527a71906850e84fc59949e8aeecc5cb15ea6004

SHA256
d88e0577c2e00555a5ef4a32122d42742c97a5ca0b4f3ea675649b9cebe442e3

SHA512
fb003e42547023e5d9bbb80669d6e10a157e701b449c9bc670a1f67418f87fa91b848aedb1bc84181efb15ab2179b950fe4de00028b8782ae788f4b21f385a9b

Download Submit
/data/data/ir.kamal.gazabasibzamini/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
a03dab1055ca607f2879be740dbb379c

SHA1
df578f5fadd744199da4e7a2c27bd545b306427d

SHA256
9c8eb8eab2f00863fe3b19879ec169c22a29cc814ce483ac04282d438a6a4463

SHA512
882dcbfdf51600747da8cf102853f5dbc14665816f9d0d1a0d67aad78f932ab9dd1cd67996ce13725bbb8c5b4d4b2405edf2c0adaf49aef673a542cd5e984d4e

Download Submit
/data/data/ir.kamal.gazabasibzamini/files/unsent_requests

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads