Analysis
-
max time kernel
2531707s -
max time network
163s -
platform
android_x64 -
resource
android-x64-20231215-en -
resource tags
androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system -
submitted
23-12-2023 13:19
Behavioral task
behavioral1
Sample
1e675599324ddf215a9b5da77a89c3502d7608af6b834a6f9516e3e801c6920b.apk
Resource
android-x86-arm-20231215-en
Behavioral task
behavioral2
Sample
1e675599324ddf215a9b5da77a89c3502d7608af6b834a6f9516e3e801c6920b.apk
Resource
android-x64-20231215-en
Behavioral task
behavioral3
Sample
1e675599324ddf215a9b5da77a89c3502d7608af6b834a6f9516e3e801c6920b.apk
Resource
android-x64-arm64-20231215-en
General
-
Target
1e675599324ddf215a9b5da77a89c3502d7608af6b834a6f9516e3e801c6920b.apk
-
Size
7.5MB
-
MD5
2bdda17b2b584b91ae8bf51f5adfb0c4
-
SHA1
8c3b7c848cf354be59ae11ef184e998ce523fb0c
-
SHA256
1e675599324ddf215a9b5da77a89c3502d7608af6b834a6f9516e3e801c6920b
-
SHA512
192d1e46e1aad5a5eefd0eddc5fef204100ae582e73809b60b7f358123b4a87d831113ffa210f2d89ab48b82e9b5270fa9406ef58efa327ed0b56e079481749b
-
SSDEEP
196608:IJ9/P65zFU3pAeLnjW52tFxfwX+7ivdhiU1rrsOMgXj3:IJ9X2FU3pAeLSQfVwmOdhtrsXA
Malware Config
Signatures
-
Requests cell location 2 IoCs
Uses Android APIs to to get current cell location.
description ioc Process Framework service call com.android.internal.telephony.ITelephony.getCellLocation ir.teliyam.pitza Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo ir.teliyam.pitza -
Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.
ioc pid Process /data/user/0/ir.teliyam.pitza/cache/1582435991586.jar 4986 ir.teliyam.pitza -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock ir.teliyam.pitza -
Reads information about phone network operator.
-
Uses Crypto APIs (Might try to encrypt user data) 1 IoCs
description ioc Process Framework API call javax.crypto.Cipher.doFinal ir.teliyam.pitza
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/ir.teliyam.pitza/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/0e7daf69-4027-4c87-a51c-04debbcaf57f.jobs
Filesize278B
MD544eccbf86856e3ba3bcfbc66b7e22b23
SHA11fcf42e7bd9809de8cce293cdd2508c3aab5d8d4
SHA256ac0964a673e1d35fde597d8a0fe8617dcf0501e86685fc1d3dc3258e16f4bf52
SHA5120896ed2d9ee1b02fe6ad2f6d2e873de139c43ea094537de5e8566030f0857c1a93157eda1eda206429103e677855d07ea99f5f3e440d492d75d79d03e69193a2
-
/data/data/ir.teliyam.pitza/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/9dd8e585-76d7-460b-b6ce-c7bdca231ebf.jobs
Filesize179B
MD5ac58f99a1b179d71e8621412ad31c6a1
SHA1b51fdad95876f5615735c2ab411031ff67d5e946
SHA2569537553772c29c4303e606e458fd9598c14f1eee3cadfb446e241638bee3ccdb
SHA512faf45d5eb4b890216e6ad33825ffc02cbc57914628e625164f9cbdacd5962ce8ca8f473ded2f56eb4d4006fc7cafa9cff8c9f76655f17f83f38d3e89b8d7e67b
-
/data/data/ir.teliyam.pitza/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/ebd8909e-5392-45dc-a050-a7321481f7a9.jobs
Filesize176B
MD5f56f328eea1d5c96a1b96dbbf59488df
SHA1440c784cacff61932e2f61580b7cfdc3a4943c95
SHA25690949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918
SHA51236e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb
-
Filesize
9KB
MD5e8e0527a01aefdb89afd2c508f131da1
SHA1f1103e6b260c657ceb3d95f1b023af3fda8b133a
SHA256f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce
SHA512fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34
-
Filesize
512B
MD5d45f37b06196636187b7dee25eaac7de
SHA1da115495a3eff5d2c7aad54a371c9de9e50b3460
SHA25653855d9bc527c19d902166df739980fcb1a53f731c34e057cb019bdf3374f367
SHA512ee5f9714d726e301c87a8dd6fb7df1d8c52438964336cdbf9fa1393b941d43c117be5f638f8f8482f69e972df5b944b59907e71389bfbf565114ed1ccf1c5813
-
Filesize
8KB
MD59ec6f467d27ceae224b64c2c453b43a4
SHA10b84e6bca07504e8ee89e99962ecbdb9ccf72f0a
SHA256260a0ef0ce4e12bd79ad02b28c5240f46d8fae28e4a3ee1dee892a7eacc01dfa
SHA512362d8117ed71cdc704a7ed3854ab1d9d7c37e4d97c8f0e44b679cbe7e89a0eabe997cbed371842fbddb7226b072d4c32f3a5abe85a432814424cbda61e04dd03
-
Filesize
8KB
MD58cf245a498daa01adfc08930857f6eb1
SHA1784f35dd2831d19dc3ffe9503d676cc4cfef32f0
SHA256fcb0b7f250352f088c0e70121cc9fc765e70650660e2e2ccd9b7401e2d8f7c3f
SHA5124e1749c8f14bbea819e0a74a9ecfbd3ff3af33d33fa34b738a3e0ea28d5f01c582a02bd8d8bb8ded91e2b037b74782cf424929f244e9886b9a15cadcace7d71d
-
Filesize
8KB
MD5762f5bc41b341de22a805c93a429b761
SHA150af8be144bcd517f8e8cfbdceae99d2184fb75f
SHA25673f1f776f3064e9846966eabe38c4b509dde85d66a2a6865afbdbe97f24d5de0
SHA5124091ef1cfdc09a3db6006287674e817f6a5141c67a1c6f4294e567c2766ac100d4e7b43e4b97aacc3b9f7ead048be10b7a78df5715d9b4de798b4e71dc457377
-
Filesize
8KB
MD514ac1bd143edeed9d8c8fcad17b68964
SHA1756868982201cf57bffb6fae8f88d0e0de394953
SHA256472827d4833716513e461b503f73d6948f300a86c7713fbf674de6b56a74fc21
SHA512ccb587e66df7778f6ac9f4da3752121630679a63a438816d4d3df8ff1b0a04aa0b22df2684cc584ec816529d4e9f1436200358c45c7f056293d8cbc72c56b2dd
-
Filesize
24KB
MD5259a1e4e7ebc4b0d0341ffcf0c3bc2ea
SHA19b8da5a0b24833a3e84567d9d8ee0d2f54d7b48c
SHA2564f4987ac3d84abad3490459fa7a32b7bfadaae5f329e15dcff36e07d34faaeb1
SHA512dc1296e2b0b18dd83a3782acb700e155ea9a60ef193bfa8c98999e7cc3c5b73a97c20a974cc956ab438aeeba812ec2d2f401fb2e714bb9bb5fb421fa4b7a2313
-
Filesize
20KB
MD57821cd468cc93fa371aebdb737369966
SHA165c54bcc23937b716f790e62ad313927074c4af1
SHA256dc057429b6ad6316363ac7088dbe04e0dbb9e84214748844d78d1fe663fe515c
SHA5129ae4f8a1f220f78cc42e22d035ac65811c909b0c160a695d847e662c12d50668671dfe79bb1ff63273966c36a7de913ff8f0390041c98ff1e7b3913d09315d8d
-
Filesize
20KB
MD55349fa032db63354cfea3b8e3e6828fb
SHA1bdcad262e453f4b4cafbf6a7a165b33bb7b482e2
SHA256fdc4955e1443af057c770b5e78227fdacb51459a260be1b8cd4b7eefb39a4456
SHA512034210eaccc55252ff2c875ffaf6b91f9a8179d8bf5cad891e530591658d0127e829b723a0aec744a0fb842bc0f7923c36ce53d8464d1db21318a1a5cb6c807a
-
Filesize
512B
MD5898ba909d7d96714423991c8c94a8bc4
SHA11cb56937534c661560f715034330cbc6f73f41e2
SHA25661e24a7d13c00693095c099fdccd54f8902cfc1435c06ced5bfdbe09b62bc03d
SHA512030bb0c46d7bc190f3bc83c08a1f8450d11ab7c46787680e44c9c63150e1ea5e2a4b1aa3307ce9eb66d9403f8ecf7fb0cbbf8719e3dbdcc4ebeaff22526761db
-
Filesize
8KB
MD52c59ebdd9e676c180bec52fe453fc81a
SHA10705dc4ae393de7e0ba7696005053e362fc0189f
SHA2560692712911a7971cddd3a5d7b590a01cce7593435cbcc01e03c40ccbcc8134c0
SHA51226215b350dcf81138a39478e3ec6394c713ca70b8ce49c1e01a555d98b9f4e3f23986a744264963df5ca1964fe1d69f6ea7c2ca4d608d5a5e909fa9f453a761e
-
Filesize
8KB
MD50988e23e772886c5f1625fa040f3737c
SHA1caaa463488345506ad3e7d696b038ae31806ac94
SHA2569d74f059dbe61dcda25082d9b60a9c055e2b7aef68eb7851d737c615eae4ab67
SHA512999f84401ab4004431cac79d3cd702da6db23d8d1c716448031e8e56d4659cb71cf510134a2dd69103efeb09fad832519255cbc36255f32636c8b9041a3ad9c2
-
Filesize
8KB
MD5bcaf787868a0b732f2e3f3359601076c
SHA1b27b888b581760bdcca46812039635f3cc82d193
SHA256d51a286bbfc6f4cf76085799f24c8d9be8df67de2c4d8f3a59247a38159a5eac
SHA512406832fb91ea4d510423401fc81696fdf45238393d76001a790dc8857bd456807f1182e7f801ebffe9a9ed8cfd0440ec8ff9ef78899fdb889cf34b63ba45a83e
-
Filesize
12KB
MD5b5a61c687dd400169c414d60ec084f8c
SHA14e2019cc1819655389e8e45579211afe42681ac4
SHA256bff91d1144323681c3619d486b898dff2db2609163762a81f398b4e1d1c5326c
SHA5122d9a2bb1627fd3ad2b477f2d3ee44be075d7559e59ec4852d29f228cec6150696272e42b763c496d900fcde604d521c5c8ab84277f8dfb524406608fe3b52e6b
-
Filesize
12KB
MD52c45a4b1d4bfac2efc59e51c5456511d
SHA1131b7ff86745f14218c03a57f2305bb587e9d237
SHA256dc6fca3526e86e91983797db49998acfe38716d24b6165f6ec3900bd0b658e73
SHA5125b12bbc02093614621f660b9a491c8b8b387d147151ee6c502e8c2044338dfc1fe1627131b3f7ce64913ebfe21de9bfacfcdefdaa49f167a35106c233180eb62
-
Filesize
12KB
MD5ea628e04765adaf4238a5dcdff4bbd51
SHA1a801947619ea8c368efe9c006a324dc6339ac60b
SHA256885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4
SHA512c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe
-
Filesize
20KB
MD57c4d44a1fc75e2f11f1a701aa2bd4561
SHA139f6ccecb2bc2889a268e7b8de45ea0b4b065412
SHA25615d17695257d211c72fa787abe7b1b4d06f6d02e473d4db55d86d5f739c0bb96
SHA512fb5601b63dcbadd31c6db4f8e87618fc81a747a16ed7d374ee125f4303b1fa1fe1183a9cd0d5eef88f125473b18fb2564ce1bdec7a256fa55739e29ab1a81329
-
Filesize
20KB
MD51601778e680c604c7c569a89fbf2dc41
SHA123d82b86647bdb4e0927baaee784217b4cf1b9fd
SHA2560bfcefd8f2a1b7c7c9b49a722b67820bdf87be73cf229779a8a163918070874f
SHA5120be5786fcb3f798bc678753bd17675b0a5907836173ddf14b7e78edd11ea14cc9d729d8ca4f931b65fcae2a817becc4391382593ba45be6a027864b11f8b7b8c
-
Filesize
512B
MD5e05b86f6060b0c48eadc6b5a2a64d2dd
SHA1823968e970640192c42a642ad3d6732cee910cc5
SHA256277835f1fd7c46feacbdc5e2c74171ef87b25fb1cd68b82600f61d0fb7f73620
SHA512ff3c1a1dfb1a6d685ea09c60023eb5e17b4e48c030c1b61c618c906103d947e030ab92d7ef9877954deb9263c7eb130fba0308986aa8c26bba2cda234b87c6b6
-
Filesize
8KB
MD5155ae0aeb89e5c81a6d9c74ff9ac8a78
SHA1049449fa4c7ac5ba990ba80c4a4fb382271d19df
SHA256e3a147abb5b15fb05d694b98269e09ef2fe528cd93a1506b8dcc88843908eabd
SHA5122bf44e8c103d535249f43bb7589ee086d2c078ab3e60fd510796bfd88365e79a3fb681921df70365e23adfde92ca4e0f02d9db1d3b7d63ae9de26f0643a47d08
-
Filesize
8KB
MD59325e17376bc0348aa470fa58537af14
SHA14c50a1e5b0e19155cd29b8b9dfa19c2d2b24500e
SHA256b3c74b2cc23925eb2aee7656b111950527847609d4dfa9df2b3a1eab70d91053
SHA512de2578ed47601a356a98bfed2d217bf2c9f91f5bd9a9f9d6107494e98fa568d2b4ecaf4ed740a7da07a4c11b44e855b9d6e53ea08b0c8a539ada9dab06a358e3
-
Filesize
12KB
MD58e230330e038ed85be127590d21ce2d3
SHA105e70e417e699b9ebded227c49299e96f932f7e0
SHA256310d7d56558f17249962d378da444a67abdeec2c8d4e48337642e0a0165511fa
SHA51269141d690bc3678ce15734b034690f88083b9e2fdf8e3dc42fc71da8d843edc50dbb2f33f1f14df9325b92814e969c118158c8374b2ddeb35beb17512f73adbe
-
Filesize
8KB
MD5713a8729b848f5b966030c1c15149ffe
SHA1add2b0caf047985b285c33b3961ee668475de219
SHA256b60911535dd4cb4884fc1e4fd284d4c0fe5e346642d8e69373a0ecbfad623e6f
SHA5128b7c71ae17cf5db82b5fe9cbedbe8b283eae88e7369795f69d6cf5288b3bb6d385b25a0c0e00d44acdcb9bca88317109adea4480c50abddd9ed33688a4c025d2
-
Filesize
8KB
MD5a4f9ee300b4ce4a5df43118b6f333466
SHA1ccf837c5d0d068e2cb77721b086f5c17ef480b47
SHA2566de6190a29a70e52ebbc5799a20dd06d52b7ae889a788eb770546792ebf0daf7
SHA512f7d48a9fb25ea840610ea9b14b950357ed0b24219cfb751e89ecb34c3d177846d735590d2267fa20f0a5ddd603a837b2d79085b2dfb97eb90ee406edb05b3c4d
-
Filesize
8KB
MD55b6844deaf3f4220924999749821815e
SHA1fb0803bdbdf9c56f911e20632d6ff5d2849aa201
SHA2565ced9d0971e4322db70e4a7ce9a0fda0c3c8eccea65ca128eefac702c3c0afc9
SHA512505f2b738858b74d689f15e1292b44af35a872b4e6ff30f0c4bbe2f98679b33a4674dde9b7158f5d390f9d8fcd18239f69d21bfe53702182ad8641f5ef88d998
-
Filesize
16KB
MD5188c0542bc062e48b614e5ca8c1081af
SHA10eb9b89a5c92957cd1fe748cc063b32853339774
SHA256c1ccc325c2699ed7f556cf171566317f706a911c4d02b1644a2a7908b93da58b
SHA51262a67f2c56bc3b40d49c80094f160d355a8f67130e1924109426e0481008bc2cd11a9e2675a901abd03cad1e7fe0028031e20d826437edcf35b6f86e2499c2b4
-
Filesize
16KB
MD50aab2862330d845c062135de982fc482
SHA18d85caaca2378a264272bc4a5dfcae9907a12e0e
SHA25644a807f15bce8daff50777317b8a60006207dd242d2f8273031760e5ca9d92bd
SHA51230a1cc354268fc4f214d9f0164a64050a2dc15148f299a648c6da8383aa1fc25ccc1276df7616f3be63227835d440c4d4851792cf9067101e8df6da753e04aab
-
Filesize
16KB
MD5bcd41b1e18663ac81dd09d983c7f09f4
SHA146ae0cfc135033530afb17dd09be1736f0836314
SHA256182c600193da5363c0457120f77454171248aa1e6eac06a9619a6aa1d7d46c17
SHA51250adced0705acf5616ba512e211d560546d05b5731dec6f4d6245fcd0866b7407823e73cbc1fd88e4fdc5b5cefb0cf3bba8f3a15df39ec0285b4a767f4a105f4
-
Filesize
16KB
MD53343ca67b4df8ce959b0f81d82313f4a
SHA1e85cee28e00fea527b493c7bfe745cd159cc69e8
SHA256720c97c8b837b1bd8591e3443621dd4d3212f13e53cf3973a7dcfe0224f78c37
SHA5128c2cf7f7eb186d339eaa09d60d319eda35e4c7c85473f3c70860cb849d293cfe05bccab1c97bbb952a7d8bba73f49365d70326c57ba9e52aa951aa3c13711e6e
-
Filesize
512B
MD59c19ed48dfb55a805e1288faf6c4025f
SHA13e3c54b3597fc63d99a983036f161f3e5cf13cd1
SHA256d05b13e7c4411ad8adb40d1371ac5f2b6bd1a1aa2f1814e13268bfe1b2756119
SHA512b3fa3845c1216a1a2ca5f3fdee5a138388fbae3c1dce602a4227fd15d9a18c4930165a7fd9c53399197e34c148afffeea45e36170184467e647603b253d26b51
-
Filesize
8KB
MD5bba09cded466f54f824d98ad58ae082a
SHA1f7fd3e69dfebcfb090771261125f4110d0c3fc2e
SHA2568f2635914f1a7bf3a4bcec79c6912cb87f6b1dddbda45ddb5fa219ec86b545c9
SHA512ba271eee8ab88d1bad2ec8404f496d1a0d4ea1857939620ab4dfb4ef855f30458825e437963e2f8a4b051bc5f1e4f3b83f23219a084ba79d6f3193cea797af07
-
Filesize
4KB
MD56eebb31af74f0bae1f57e237967635ac
SHA1ddd37934c1945de3852d0865b94d309bf757483d
SHA2561155d248756ee1c7168e9856c81c6c5e72d093916e536d162bc105b7f90f7feb
SHA5125f0755d59ad453db9cf3349383f11f3fdf3363023d60aa55031a96e5a96a979331546daffef7c4a8ffd7ad4d9369e3da36d4db04c732b59bc5d62ca69a3255e3
-
Filesize
8KB
MD595a408cf6f5443d99c003eadf665c9c6
SHA1309598b21a39983dbc8c88c73d196c14b47a8285
SHA256befd7edf9058913f9ced322532199d8247a659db34cdd39aff1f395e6531ba25
SHA512e0c63f275564a1c3a1a2219cf1d2b692f9169ab93923f8b980d497f6f9e1852094f194fdbe584e54ff9e5a4e5f91b6d8077ab0f80363c8bd329a6a0eaffdcf37
-
Filesize
512B
MD5a1662d846b19de8fa4b1f71355c43367
SHA13a14e5634d236ec675a151c66703c7bca212108c
SHA2560fbb553dcaf8c9f1afa7251f4dee6b8d1e371bb2f82820828739543e78d120cf
SHA512d968f009c8862cb86f51231728cb3da2196d48eb4e215ff8b8f6b8d52586807aa5f829d074b53fc36201de04f78aa2da0c60e923ff6589a00f0d6b43649829b8
-
Filesize
8KB
MD5f0ae80049da20fe5b9f09ae748ab18d8
SHA11ff7eface8631d826b9fc1b63f81841688754515
SHA256e593f82e8612c61e405b914ab9e7eb2ef15d4f89d3247befd63a97a78c572fa8
SHA512db836f78698709aad707bf8b90232da76965bb3c8cf30946b32bae174875fca331ce24287fe7f2cf6e8b76b4e36afcb466c29d6838dad7b67357d57f980e9f42
-
Filesize
2KB
MD57821f3dfe98ff956c8d69b9058d3a464
SHA163173dcf21fd04f8956c0c954500f555202dbd1e
SHA256a762903de63d00141f1b1538bedaf8a9a8849aacd85ce270ecb99492032828ff
SHA5129b105ea794a56c4ffeffdf7b4417847ee14fa298b6f555f6fc4ac3dd231834d66b7e2cda6ce90b45f55b4dc5b0c4e62a311298fe045eaf870c512419202f90a4
-
Filesize
20KB
MD5fde2ee00cbd121cfab5290b078aa3ceb
SHA1e2b77d5320e155e413d040a8c20020962065b2f8
SHA2562897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685
SHA512a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56