Malware Analysis Report

2025-01-19 06:44

Sample ID 231223-qkv8hadgb8
Target 1e675599324ddf215a9b5da77a89c3502d7608af6b834a6f9516e3e801c6920b
SHA256 1e675599324ddf215a9b5da77a89c3502d7608af6b834a6f9516e3e801c6920b
Tags
irata
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

1e675599324ddf215a9b5da77a89c3502d7608af6b834a6f9516e3e801c6920b

Threat Level: Known bad

The file 1e675599324ddf215a9b5da77a89c3502d7608af6b834a6f9516e3e801c6920b was found to be: Known bad.

Malicious Activity Summary

irata

Irata payload

Irata family

Requests cell location

Loads dropped Dex/Jar

Requests dangerous framework permissions

Acquires the wake lock

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data)

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2023-12-23 13:19

Signatures

Irata family

irata

Irata payload

Description Indicator Process Target
N/A N/A N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE N/A N/A
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2023-12-23 13:19

Reported

2023-12-23 13:52

Platform

android-x86-arm-20231215-en

Max time kernel

2532394s

Max time network

130s

Command Line

ir.teliyam.pitza

Signatures

Requests cell location

Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data)

Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

ir.teliyam.pitza

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 semanticlocation-pa.googleapis.com udp
GB 142.250.180.14:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
US 1.1.1.1:53 sdk.cheshmak.me udp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 1.1.1.1:53 semanticlocation-pa.googleapis.com udp
GB 142.250.178.10:443 semanticlocation-pa.googleapis.com tcp
GB 142.250.187.206:443 android.apis.google.com tcp
GB 142.250.187.206:443 android.apis.google.com tcp
GB 142.250.187.206:443 android.apis.google.com tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 1.1.1.1:53 admob.mehranarzani.ir udp
BE 74.125.206.188:5228 tcp
US 1.1.1.1:53 www.google.com udp
US 1.1.1.1:53 www.google.com udp
US 199.59.243.225:443 sdk.cheshmak.me tcp
FR 216.58.201.100:443 tcp
GB 216.58.212.196:443 www.google.com tcp
US 1.1.1.1:53 ip.pushe.co udp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.180.4:443 www.google.com tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 1.1.1.1:53 ffqebdgx udp
US 1.1.1.1:53 ethclnegppyag udp
US 1.1.1.1:53 uiagxlhiekpgqs udp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 1.1.1.1:53 uiagxlhiekpgqs udp
US 1.1.1.1:53 uiagxlhiekpgqs udp
US 1.1.1.1:53 ffqebdgx udp
US 1.1.1.1:53 ffqebdgx udp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp

Files

/data/data/ir.teliyam.pitza/databases/db_default_job_manager-journal

MD5 cca174bae75f0319db174b10d8ed0fe0
SHA1 73b3ec50f0d8c208b57764bc3a2dc7a8129002f4
SHA256 d3f9e29e5f4eda60dea426f6960ab946a96356b7dc58386208ddd66e8dc49a47
SHA512 29452449f63b8136807182a13d8045ed3624a4a6eed03d87b700fb9c9927009a1deb4f2ab19b106629e14f12b76aceff96aae3427fdf0078bdc1f6a6aba0b179

/data/data/ir.teliyam.pitza/databases/db_default_job_manager

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/ir.teliyam.pitza/databases/db_default_job_manager-wal

MD5 24df6f00eca4c6471a1d4c403b12434d
SHA1 a2859ce364045d8014ede3f96280c232aed7c974
SHA256 a8cdd53e5bd17af68e628f0d4f422f2798142701eef97a588ac08070d5f118ab
SHA512 ca8beb57f6928f08a5fca7c88593c003cf26a048b9b01216f9db8741b6fea4fa0e637839233535609c74e461cdf895244ec6580ce14bb64680e454f6995de5d4

/data/data/ir.teliyam.pitza/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/c19defb0-4efb-4843-9394-ba31bf0c5844.jobs

MD5 f56f328eea1d5c96a1b96dbbf59488df
SHA1 440c784cacff61932e2f61580b7cfdc3a4943c95
SHA256 90949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918
SHA512 36e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-journal

MD5 070dc7f484bb8850bcce43183223b15b
SHA1 1018b890f79545c33976b4e065ea2644e114201e
SHA256 b34baf569609005a74e30675e5923294594ecc3f2454fa0e05219008ca70e357
SHA512 d9bb5595a0055616da7fcc76bcab8da8eba09f16add2ae57bd726e458b1446f1935ba00426611e80926992ced8af9033baddcf9d5c978ae847a92c1f35737410

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 7237409e0640cfab7bdbd429bf821a3b
SHA1 4c3da934842f8d4835dfe2a9c275a300e5123309
SHA256 5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512 c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

/data/data/ir.teliyam.pitza/databases/cheshdb-wal

MD5 ac7bdddc8003ec678a91ca053590691d
SHA1 b154ef8eb8f9e7d13bbd6ba488e11b1abf632d26
SHA256 3d2547a6f4d2feb7ebc5e74a42f41cf4efecedb5c8df822083d202bc3818b848
SHA512 9fea54eca8b32d0233cd4bbd5003780083d60bec77417f268451df76c579b6d7453fd5bbca8187c45030c648403f8a223f9ca424d012ab5cba7c5700079baa51

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-shm

MD5 cf845a781c107ec1346e849c9dd1b7e8
SHA1 b44ccc7f7d519352422e59ee8b0bdbac881768a7
SHA256 18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7
SHA512 4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

/data/data/ir.teliyam.pitza/databases/cheshdb

MD5 b99ac6f5f701cce3acc860294f3e88db
SHA1 5030079814399f524656a455ae29fe99668fe1ae
SHA256 ece9176a39f473c618c6c1896edb0b4c6b8c55ba8acc2f5b51f906141d2e392e
SHA512 e72bf05c9a95887ea76a63dc6a09ed4cbcfc4d3b00bd5c22c035a0d55ba195e7e33a066965f955eba1f872ed3ba0c78efa6bcbb327be8adf21e5d6db9d04a143

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-wal

MD5 6a53d782605b60a02c6330a4afa3e485
SHA1 98e648f8ad9248abc0eeebce5cedc175ba38872c
SHA256 7100d7af3735a5b7c0f087c7c17b4a07684af61ebe2cb5b82fb8be139552bf06
SHA512 20831afb81f61467b0739c879c21234dd7af8217ad91be7ea35c5633260a5101b05a991365ec3f7d8271d6a41099446edfd05b515c3ba0b2c06833a7ab7abba1

/data/data/ir.teliyam.pitza/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/bef9dc04-780f-4bac-bc1d-6eb2292e485d.jobs

MD5 b0b1a8927adc6a6e2d735cbd7c4daf0d
SHA1 3bd9bbddbb8d6b3f7327c24006bc5aeb9341247e
SHA256 c8483470db0e74d129d55d54be34a038c8205784ee205f6c4b137da8fa0a58c3
SHA512 a913eed8d53109bfe5334755a7db6d29a38a9c22e701d8eb84d8d02e92fef26dd2e3ff6bddc366a4acde8ff2553d1516e0694e375b14688ced24f28fbc3df6f6

/data/data/ir.teliyam.pitza/databases/__pushe_base_lib_db-journal

MD5 4b0412da16e133e636584d5ecaa170f5
SHA1 ce155b0a7bea9f5485138ce6759573d2f6a356bd
SHA256 8b94c9d059ccfe3c5845bf0ebe4f0920c9f8a930d9b3722583c7b841498af843
SHA512 d1ef8e395a2156986d26e26f34ca8a073eb9ffcf0333d2301838b76f854e514f2df13f7fac48c7730fa5ceccb183812783bb0c096027554e41a94ede84e5a681

/data/data/ir.teliyam.pitza/databases/__pushe_base_lib_db-wal

MD5 be120fb63df492107318cf54e0dc053d
SHA1 86d3bffcf763dca6ebf360116fe0918c652e4472
SHA256 0394dd928cd2c460c4a29122927f1b7675580967ed582682e2d24949bca6f7bd
SHA512 7dfaf8415c1eb285a17fafa6e479b06ba9ec26d48c5f421db6c7342cec99cf72e73457be9fafca33b17f1d31305cae778e58e4b8ba3c5558cbc6886c57556628

/data/data/ir.teliyam.pitza/files/info.db

MD5 d56fb84ee3f26a08155c405e43aa71aa
SHA1 7572255fd40394c48059e1c16084c65738061f6b
SHA256 5fb16665932c76666300538f9f8d8551e4b879e5ec377043824e6ab5090252a1
SHA512 5664f3aa540f367a366207b613a92f8844d9f55941ed536eeaea565f74c1c26eb269dc2ce46f2c61732ca615545fe015109454fdf90e7800dbce601480c434e9

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-wal

MD5 c5d305dfceb445b6e124d734f875ad88
SHA1 d41d1559b3b622841a69d26102e8267ecf7de222
SHA256 dac46f620dd132d85344e9547cb2bbdc8daa08c5e2ec38f0182aa33e117d102e
SHA512 ed83c0a1fa5618878d5de5daf130a8f0b965a3caafa7f9e60c5ff59fc3dc64c27566126705958f65f8be9b9717c102bee19f8753f32d0bcf1c2b6437358d4f3b

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 91bf7e3a00adf70615f824d3de4b2fbe
SHA1 b9d4306f1bff0e42a1b3b4fc06f10d8058966a18
SHA256 bfcbaa2e66b113d48baa474bf289185839df92cf5a26bcecece196feea010584
SHA512 bad49487e182c2772e2fa644a1f820ae133d8a9e69759bf06815d48fa94f7c116be5070b59083bb6412b4bd8e6f60c48c32791aadfaea8f4bd63d20ef81a5189

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-wal

MD5 1d2a62b5250347c3b2a3c83627651e40
SHA1 b00313adb5e517930caa132fd8d1286615dc863d
SHA256 0bb6738085acc45bdab640d6ffe2a88473bdde0be9b3790fb1d2fcb2649b6169
SHA512 5c8088d8089cb15362a0edaa2eb87f79b14c35249f0323cc0b3c8496736d724cb438580a5557e3cb8d3f6467b9b17d7c6254f31ab1d2ee632611214841c13bf1

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 b6a801cd387f9437c0d6b09cb408f5f3
SHA1 7d8c613ce3309cebdb7d7f5de503cec70d1f024d
SHA256 56393148ef9b2da4c5833d99868422a7e5eef3e516c0b4bd8c2a031bd7308ec4
SHA512 423782fbb52cc0f611b117fbe7e1f1b15c7dfbf2095e00a766672b4b90237d33bddf5fcba62a06c912c9ca39af94d39feda0deb04d77c0603d266f66d2f1ac14

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-wal

MD5 c59c9ab01cb96b87893a4e32f0ab79bb
SHA1 7b46f55649dd6fbcd174d6be4ef6a6391025dd81
SHA256 00b8330a0db9845846fb96d5ac1bfc94cc5fd90e4d271d945b26b07b7229af23
SHA512 ec56b793c90da1f683d10ebedf78902658060ed804c5c8be146ec876b95d46d68880590074e2ef7c8200add3f4107f4668c78fbb1920ac5d547beda02dafb0c5

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 7c4c4e8a9ff0ca44444d09c290d9b991
SHA1 2d3f6b856fff463915cebbc942b4aed6ab8f14bb
SHA256 119955849e2e5c782199326128973cc20e8d19a8d61b184ade6887c324e4ccfc
SHA512 aebf23f8ffda7b77e8309694f55a94e561f55b8500ce0db3967fe3e8c1ae0176f85976d6b21314d19f1a5459866d1620b9a1cbf2acd993eb0324179a924a4bed

/data/data/ir.teliyam.pitza/databases/evernote_jobs.db-journal

MD5 35d0c089535ab9c84ca6494b1126d20d
SHA1 497ba95508c6d34a7897d6e9737ab59fe28aa3cd
SHA256 ef824d653e09a502fb0857ca06f781fa405947fd17ff06f6f9e59988e4e0c0f8
SHA512 b7626375f553c4a1633fb329a349b460c4ba230e765740c0d2c2ae314d2991d1a5f9a929bba75a209ccf89196d4db3850ac19bb196c7de9bda9a08a62295fdfb

/data/data/ir.teliyam.pitza/databases/evernote_jobs.db-wal

MD5 3b5cd86b1a29b47df58d4f59990b65d1
SHA1 8e2dd9464fda0cebd22282f10c9830ac1ae4bda9
SHA256 890e2cf1c71c134cbe2f2bfd485567f8e370b9a10e8248f0fc78f02228e2a82a
SHA512 83133b6dbe5a8f67a5830a01e1172f06d382f625fce16dbac3882fb2f27e340f42dbb839e56c90eb4a5f01428a1c33795b0622c37a1e35bf5c9b63cccfb0da16

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-wal

MD5 b7593853a7a3eed588dec86729b75275
SHA1 801fa4a37e0ecb25742ae66a58cee9e76024b425
SHA256 4ace3b09f57879be1b4b32dfab366704a19c7c7c921b9393c43a25afa8889e46
SHA512 0037a1b7ffabcc1e6f97902830546ac291b952bf03843eee8f433773738fbca3cdb8603122820df6873634af06760f3b9b30fa0ff4864f5eb4f2093932d34789

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 94a8e965947d11d244e9dc74c95012f1
SHA1 f1cd300101504af120a70dbb9bc634ee27b0a033
SHA256 692d8b2b82d9ccbc80e78cf967de2782b29419be080088bb3ef050a6a795b191
SHA512 ae286b715b0f0763ff20e9a7610ba95a3fa752312cd174a54b2f38781029e8d7b2a40f053863e1bee393fcbd72425f0b37c3dc578728574771342a20a43c1650

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-wal

MD5 ec055e9d0f01018f0cd4fea5b445f5a7
SHA1 d54a3c0399feeaae63a0da8149e6b6939d8857df
SHA256 e998d8e201ca5bdd4cfe3aaeee47a2bade1f961335e4c5f25a571e16dd2caccc
SHA512 3290a54a92da9cdd09ea68585ee136fcff53ec3c7eb4ef515d90c58786562ea51ea46bece9131b465fb6082b2d989dafeaada4fd4b7ce02e7452578669c33f39

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 ae40eed41112b3a4aeebcd6aade5f5f2
SHA1 7eb0be0aeacc160ed4e8ab173d9b42b204be6de7
SHA256 ef05bab1a95992ea26046167012f1d67767d18e08f60e416f659027fa0b41855
SHA512 9cc6d59cb015beef6527c185ae271a12e487fa055761c525d8ee946d555fe56a631662efb73270f44d65dd02ed95012849a8572297f5c5f7ca040dd362427d2d

/data/data/ir.teliyam.pitza/databases/cheshdb-wal

MD5 780fd2f168733056712f69ab6861ab3b
SHA1 989e8f6d9383914c07fbcb9df41e253f97ba1fe2
SHA256 5f69baaf97727d4f1fc93b77b9b905664db5782746b166fc7b7179ee1aebb81d
SHA512 6ede3656dfa6898ff7efb3629c57f13caa938ae68c5fb251d8588192441c827435634c9c88fee5ef41a11c9daa7579dee48268ceb12a519d3b463dbbe3062b2a

/data/data/ir.teliyam.pitza/databases/cheshdb

MD5 97e0b8fe064f4e94020ea2b1b3ab74f9
SHA1 81a4b2a87301182e2d4d4fb0583d0a9a68258f84
SHA256 7844666db7e9fa78cfe1e96e6175efc90a9bc6f8772c49412aebcd61a01bc221
SHA512 9c986de81a6e6d9569db36922f7f19310d69ad4c994ac723f8a6ca6bbabdccc7725f4ceb0d1aa17745c808c440c170fe3f619dcbc04b55b60037d441b4190962

/data/data/ir.teliyam.pitza/files/info.db-journal

MD5 0799e2f26b5fb24ac0c70603c1047fed
SHA1 5bd9d8988a2c014fa3fd49a9b0ef51b9d52bf990
SHA256 11dca8e7497999c6255e766e4ab041ab0d58dbf1dac9b655bc449c1683310d71
SHA512 b1f78c446a29b345fcf90933a58237d5440a2e71d635ffd77ce94e77e5cbfc7599a365144f8fbad448034d508ee4852d0c0a8f70418959c98957e9e8dd0bfabe

/data/data/ir.teliyam.pitza/files/info.db

MD5 0bf98355abf60d6e355a60b16cb4465b
SHA1 d7f9208b8572b98897595146c4c88a87d47e6df3
SHA256 52c6f0147e220a9c3dfcbe66370d0af26d1075e4d48ce6ab10cdd0b673e3a580
SHA512 c747cd36d4ad6614fa459aed707f21c564330666c12f31e4732bee21a56e083e7cab512817a828bf048a7f62bfe7beaccfa5ba0fcc39759503b814552a5c55a6

/data/data/ir.teliyam.pitza/cache/1582435991586.jar

MD5 e8e0527a01aefdb89afd2c508f131da1
SHA1 f1103e6b260c657ceb3d95f1b023af3fda8b133a
SHA256 f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce
SHA512 fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34

/data/data/ir.teliyam.pitza/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Analysis: behavioral2

Detonation Overview

Submitted

2023-12-23 13:19

Reported

2023-12-23 13:40

Platform

android-x64-20231215-en

Max time kernel

2531707s

Max time network

163s

Command Line

ir.teliyam.pitza

Signatures

Requests cell location

Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A

Loads dropped Dex/Jar

Description Indicator Process Target
N/A /data/user/0/ir.teliyam.pitza/cache/1582435991586.jar N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data)

Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

ir.teliyam.pitza

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.180.8:443 ssl.google-analytics.com tcp
FR 216.58.201.110:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.238:443 android.apis.google.com tcp
US 1.1.1.1:53 sdk.cheshmak.me udp
US 199.59.243.225:443 sdk.cheshmak.me tcp
GB 172.217.16.238:443 android.apis.google.com tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
GB 216.58.212.202:443 tcp
GB 216.58.212.202:443 tcp
GB 216.58.212.202:443 tcp
US 1.1.1.1:53 admob.mehranarzani.ir udp
BE 142.250.110.188:5228 tcp
US 1.1.1.1:53 www.google.com udp
FR 216.58.204.68:443 www.google.com tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 1.1.1.1:53 ip.pushe.co udp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
GB 172.217.169.36:443 tcp
GB 172.217.169.36:443 tcp
US 162.243.147.245:80 ip.pushe.co tcp
FR 216.58.204.68:443 www.google.com tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
FR 216.58.201.98:443 tcp
GB 142.250.179.238:443 tcp

Files

/data/data/ir.teliyam.pitza/databases/db_default_job_manager-journal

MD5 e05b86f6060b0c48eadc6b5a2a64d2dd
SHA1 823968e970640192c42a642ad3d6732cee910cc5
SHA256 277835f1fd7c46feacbdc5e2c74171ef87b25fb1cd68b82600f61d0fb7f73620
SHA512 ff3c1a1dfb1a6d685ea09c60023eb5e17b4e48c030c1b61c618c906103d947e030ab92d7ef9877954deb9263c7eb130fba0308986aa8c26bba2cda234b87c6b6

/data/data/ir.teliyam.pitza/databases/db_default_job_manager

MD5 ea628e04765adaf4238a5dcdff4bbd51
SHA1 a801947619ea8c368efe9c006a324dc6339ac60b
SHA256 885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4
SHA512 c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

/data/data/ir.teliyam.pitza/databases/db_default_job_manager-journal

MD5 155ae0aeb89e5c81a6d9c74ff9ac8a78
SHA1 049449fa4c7ac5ba990ba80c4a4fb382271d19df
SHA256 e3a147abb5b15fb05d694b98269e09ef2fe528cd93a1506b8dcc88843908eabd
SHA512 2bf44e8c103d535249f43bb7589ee086d2c078ab3e60fd510796bfd88365e79a3fb681921df70365e23adfde92ca4e0f02d9db1d3b7d63ae9de26f0643a47d08

/data/data/ir.teliyam.pitza/databases/db_default_job_manager-journal

MD5 9325e17376bc0348aa470fa58537af14
SHA1 4c50a1e5b0e19155cd29b8b9dfa19c2d2b24500e
SHA256 b3c74b2cc23925eb2aee7656b111950527847609d4dfa9df2b3a1eab70d91053
SHA512 de2578ed47601a356a98bfed2d217bf2c9f91f5bd9a9f9d6107494e98fa568d2b4ecaf4ed740a7da07a4c11b44e855b9d6e53ea08b0c8a539ada9dab06a358e3

/data/data/ir.teliyam.pitza/no_backup/com.google.InstanceId.properties

MD5 7821f3dfe98ff956c8d69b9058d3a464
SHA1 63173dcf21fd04f8956c0c954500f555202dbd1e
SHA256 a762903de63d00141f1b1538bedaf8a9a8849aacd85ce270ecb99492032828ff
SHA512 9b105ea794a56c4ffeffdf7b4417847ee14fa298b6f555f6fc4ac3dd231834d66b7e2cda6ce90b45f55b4dc5b0c4e62a311298fe045eaf870c512419202f90a4

/data/data/ir.teliyam.pitza/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/ebd8909e-5392-45dc-a050-a7321481f7a9.jobs

MD5 f56f328eea1d5c96a1b96dbbf59488df
SHA1 440c784cacff61932e2f61580b7cfdc3a4943c95
SHA256 90949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918
SHA512 36e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb

/data/data/ir.teliyam.pitza/databases/db_default_job_manager-journal

MD5 8e230330e038ed85be127590d21ce2d3
SHA1 05e70e417e699b9ebded227c49299e96f932f7e0
SHA256 310d7d56558f17249962d378da444a67abdeec2c8d4e48337642e0a0165511fa
SHA512 69141d690bc3678ce15734b034690f88083b9e2fdf8e3dc42fc71da8d843edc50dbb2f33f1f14df9325b92814e969c118158c8374b2ddeb35beb17512f73adbe

/data/data/ir.teliyam.pitza/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/9dd8e585-76d7-460b-b6ce-c7bdca231ebf.jobs

MD5 ac58f99a1b179d71e8621412ad31c6a1
SHA1 b51fdad95876f5615735c2ab411031ff67d5e946
SHA256 9537553772c29c4303e606e458fd9598c14f1eee3cadfb446e241638bee3ccdb
SHA512 faf45d5eb4b890216e6ad33825ffc02cbc57914628e625164f9cbdacd5962ce8ca8f473ded2f56eb4d4006fc7cafa9cff8c9f76655f17f83f38d3e89b8d7e67b

/data/data/ir.teliyam.pitza/databases/db_default_job_manager-journal

MD5 7c4d44a1fc75e2f11f1a701aa2bd4561
SHA1 39f6ccecb2bc2889a268e7b8de45ea0b4b065412
SHA256 15d17695257d211c72fa787abe7b1b4d06f6d02e473d4db55d86d5f739c0bb96
SHA512 fb5601b63dcbadd31c6db4f8e87618fc81a747a16ed7d374ee125f4303b1fa1fe1183a9cd0d5eef88f125473b18fb2564ce1bdec7a256fa55739e29ab1a81329

/data/data/ir.teliyam.pitza/databases/cheshdb-journal

MD5 898ba909d7d96714423991c8c94a8bc4
SHA1 1cb56937534c661560f715034330cbc6f73f41e2
SHA256 61e24a7d13c00693095c099fdccd54f8902cfc1435c06ced5bfdbe09b62bc03d
SHA512 030bb0c46d7bc190f3bc83c08a1f8450d11ab7c46787680e44c9c63150e1ea5e2a4b1aa3307ce9eb66d9403f8ecf7fb0cbbf8719e3dbdcc4ebeaff22526761db

/data/data/ir.teliyam.pitza/databases/cheshdb

MD5 259a1e4e7ebc4b0d0341ffcf0c3bc2ea
SHA1 9b8da5a0b24833a3e84567d9d8ee0d2f54d7b48c
SHA256 4f4987ac3d84abad3490459fa7a32b7bfadaae5f329e15dcff36e07d34faaeb1
SHA512 dc1296e2b0b18dd83a3782acb700e155ea9a60ef193bfa8c98999e7cc3c5b73a97c20a974cc956ab438aeeba812ec2d2f401fb2e714bb9bb5fb421fa4b7a2313

/data/data/ir.teliyam.pitza/databases/cheshdb-journal

MD5 2c59ebdd9e676c180bec52fe453fc81a
SHA1 0705dc4ae393de7e0ba7696005053e362fc0189f
SHA256 0692712911a7971cddd3a5d7b590a01cce7593435cbcc01e03c40ccbcc8134c0
SHA512 26215b350dcf81138a39478e3ec6394c713ca70b8ce49c1e01a555d98b9f4e3f23986a744264963df5ca1964fe1d69f6ea7c2ca4d608d5a5e909fa9f453a761e

/data/data/ir.teliyam.pitza/databases/cheshdb-journal

MD5 0988e23e772886c5f1625fa040f3737c
SHA1 caaa463488345506ad3e7d696b038ae31806ac94
SHA256 9d74f059dbe61dcda25082d9b60a9c055e2b7aef68eb7851d737c615eae4ab67
SHA512 999f84401ab4004431cac79d3cd702da6db23d8d1c716448031e8e56d4659cb71cf510134a2dd69103efeb09fad832519255cbc36255f32636c8b9041a3ad9c2

/data/data/ir.teliyam.pitza/databases/cheshdb-journal

MD5 bcaf787868a0b732f2e3f3359601076c
SHA1 b27b888b581760bdcca46812039635f3cc82d193
SHA256 d51a286bbfc6f4cf76085799f24c8d9be8df67de2c4d8f3a59247a38159a5eac
SHA512 406832fb91ea4d510423401fc81696fdf45238393d76001a790dc8857bd456807f1182e7f801ebffe9a9ed8cfd0440ec8ff9ef78899fdb889cf34b63ba45a83e

/data/data/ir.teliyam.pitza/databases/db_default_job_manager-journal

MD5 1601778e680c604c7c569a89fbf2dc41
SHA1 23d82b86647bdb4e0927baaee784217b4cf1b9fd
SHA256 0bfcefd8f2a1b7c7c9b49a722b67820bdf87be73cf229779a8a163918070874f
SHA512 0be5786fcb3f798bc678753bd17675b0a5907836173ddf14b7e78edd11ea14cc9d729d8ca4f931b65fcae2a817becc4391382593ba45be6a027864b11f8b7b8c

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-journal

MD5 9c19ed48dfb55a805e1288faf6c4025f
SHA1 3e3c54b3597fc63d99a983036f161f3e5cf13cd1
SHA256 d05b13e7c4411ad8adb40d1371ac5f2b6bd1a1aa2f1814e13268bfe1b2756119
SHA512 b3fa3845c1216a1a2ca5f3fdee5a138388fbae3c1dce602a4227fd15d9a18c4930165a7fd9c53399197e34c148afffeea45e36170184467e647603b253d26b51

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 188c0542bc062e48b614e5ca8c1081af
SHA1 0eb9b89a5c92957cd1fe748cc063b32853339774
SHA256 c1ccc325c2699ed7f556cf171566317f706a911c4d02b1644a2a7908b93da58b
SHA512 62a67f2c56bc3b40d49c80094f160d355a8f67130e1924109426e0481008bc2cd11a9e2675a901abd03cad1e7fe0028031e20d826437edcf35b6f86e2499c2b4

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-journal

MD5 bba09cded466f54f824d98ad58ae082a
SHA1 f7fd3e69dfebcfb090771261125f4110d0c3fc2e
SHA256 8f2635914f1a7bf3a4bcec79c6912cb87f6b1dddbda45ddb5fa219ec86b545c9
SHA512 ba271eee8ab88d1bad2ec8404f496d1a0d4ea1857939620ab4dfb4ef855f30458825e437963e2f8a4b051bc5f1e4f3b83f23219a084ba79d6f3193cea797af07

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-journal

MD5 6eebb31af74f0bae1f57e237967635ac
SHA1 ddd37934c1945de3852d0865b94d309bf757483d
SHA256 1155d248756ee1c7168e9856c81c6c5e72d093916e536d162bc105b7f90f7feb
SHA512 5f0755d59ad453db9cf3349383f11f3fdf3363023d60aa55031a96e5a96a979331546daffef7c4a8ffd7ad4d9369e3da36d4db04c732b59bc5d62ca69a3255e3

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-journal

MD5 95a408cf6f5443d99c003eadf665c9c6
SHA1 309598b21a39983dbc8c88c73d196c14b47a8285
SHA256 befd7edf9058913f9ced322532199d8247a659db34cdd39aff1f395e6531ba25
SHA512 e0c63f275564a1c3a1a2219cf1d2b692f9169ab93923f8b980d497f6f9e1852094f194fdbe584e54ff9e5a4e5f91b6d8077ab0f80363c8bd329a6a0eaffdcf37

/data/data/ir.teliyam.pitza/databases/cheshdb-journal

MD5 b5a61c687dd400169c414d60ec084f8c
SHA1 4e2019cc1819655389e8e45579211afe42681ac4
SHA256 bff91d1144323681c3619d486b898dff2db2609163762a81f398b4e1d1c5326c
SHA512 2d9a2bb1627fd3ad2b477f2d3ee44be075d7559e59ec4852d29f228cec6150696272e42b763c496d900fcde604d521c5c8ab84277f8dfb524406608fe3b52e6b

/data/data/ir.teliyam.pitza/databases/cheshdb

MD5 7821cd468cc93fa371aebdb737369966
SHA1 65c54bcc23937b716f790e62ad313927074c4af1
SHA256 dc057429b6ad6316363ac7088dbe04e0dbb9e84214748844d78d1fe663fe515c
SHA512 9ae4f8a1f220f78cc42e22d035ac65811c909b0c160a695d847e662c12d50668671dfe79bb1ff63273966c36a7de913ff8f0390041c98ff1e7b3913d09315d8d

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-journal

MD5 a1662d846b19de8fa4b1f71355c43367
SHA1 3a14e5634d236ec675a151c66703c7bca212108c
SHA256 0fbb553dcaf8c9f1afa7251f4dee6b8d1e371bb2f82820828739543e78d120cf
SHA512 d968f009c8862cb86f51231728cb3da2196d48eb4e215ff8b8f6b8d52586807aa5f829d074b53fc36201de04f78aa2da0c60e923ff6589a00f0d6b43649829b8

/data/data/ir.teliyam.pitza/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/0e7daf69-4027-4c87-a51c-04debbcaf57f.jobs

MD5 44eccbf86856e3ba3bcfbc66b7e22b23
SHA1 1fcf42e7bd9809de8cce293cdd2508c3aab5d8d4
SHA256 ac0964a673e1d35fde597d8a0fe8617dcf0501e86685fc1d3dc3258e16f4bf52
SHA512 0896ed2d9ee1b02fe6ad2f6d2e873de139c43ea094537de5e8566030f0857c1a93157eda1eda206429103e677855d07ea99f5f3e440d492d75d79d03e69193a2

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db-journal

MD5 f0ae80049da20fe5b9f09ae748ab18d8
SHA1 1ff7eface8631d826b9fc1b63f81841688754515
SHA256 e593f82e8612c61e405b914ab9e7eb2ef15d4f89d3247befd63a97a78c572fa8
SHA512 db836f78698709aad707bf8b90232da76965bb3c8cf30946b32bae174875fca331ce24287fe7f2cf6e8b76b4e36afcb466c29d6838dad7b67357d57f980e9f42

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 0aab2862330d845c062135de982fc482
SHA1 8d85caaca2378a264272bc4a5dfcae9907a12e0e
SHA256 44a807f15bce8daff50777317b8a60006207dd242d2f8273031760e5ca9d92bd
SHA512 30a1cc354268fc4f214d9f0164a64050a2dc15148f299a648c6da8383aa1fc25ccc1276df7616f3be63227835d440c4d4851792cf9067101e8df6da753e04aab

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 bcd41b1e18663ac81dd09d983c7f09f4
SHA1 46ae0cfc135033530afb17dd09be1736f0836314
SHA256 182c600193da5363c0457120f77454171248aa1e6eac06a9619a6aa1d7d46c17
SHA512 50adced0705acf5616ba512e211d560546d05b5731dec6f4d6245fcd0866b7407823e73cbc1fd88e4fdc5b5cefb0cf3bba8f3a15df39ec0285b4a767f4a105f4

/data/data/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 3343ca67b4df8ce959b0f81d82313f4a
SHA1 e85cee28e00fea527b493c7bfe745cd159cc69e8
SHA256 720c97c8b837b1bd8591e3443621dd4d3212f13e53cf3973a7dcfe0224f78c37
SHA512 8c2cf7f7eb186d339eaa09d60d319eda35e4c7c85473f3c70860cb849d293cfe05bccab1c97bbb952a7d8bba73f49365d70326c57ba9e52aa951aa3c13711e6e

/data/data/ir.teliyam.pitza/databases/__pushe_base_lib_db-journal

MD5 d45f37b06196636187b7dee25eaac7de
SHA1 da115495a3eff5d2c7aad54a371c9de9e50b3460
SHA256 53855d9bc527c19d902166df739980fcb1a53f731c34e057cb019bdf3374f367
SHA512 ee5f9714d726e301c87a8dd6fb7df1d8c52438964336cdbf9fa1393b941d43c117be5f638f8f8482f69e972df5b944b59907e71389bfbf565114ed1ccf1c5813

/data/data/ir.teliyam.pitza/databases/__pushe_base_lib_db-journal

MD5 9ec6f467d27ceae224b64c2c453b43a4
SHA1 0b84e6bca07504e8ee89e99962ecbdb9ccf72f0a
SHA256 260a0ef0ce4e12bd79ad02b28c5240f46d8fae28e4a3ee1dee892a7eacc01dfa
SHA512 362d8117ed71cdc704a7ed3854ab1d9d7c37e4d97c8f0e44b679cbe7e89a0eabe997cbed371842fbddb7226b072d4c32f3a5abe85a432814424cbda61e04dd03

/data/data/ir.teliyam.pitza/databases/__pushe_base_lib_db-journal

MD5 8cf245a498daa01adfc08930857f6eb1
SHA1 784f35dd2831d19dc3ffe9503d676cc4cfef32f0
SHA256 fcb0b7f250352f088c0e70121cc9fc765e70650660e2e2ccd9b7401e2d8f7c3f
SHA512 4e1749c8f14bbea819e0a74a9ecfbd3ff3af33d33fa34b738a3e0ea28d5f01c582a02bd8d8bb8ded91e2b037b74782cf424929f244e9886b9a15cadcace7d71d

/data/data/ir.teliyam.pitza/databases/evernote_jobs.db-journal

MD5 713a8729b848f5b966030c1c15149ffe
SHA1 add2b0caf047985b285c33b3961ee668475de219
SHA256 b60911535dd4cb4884fc1e4fd284d4c0fe5e346642d8e69373a0ecbfad623e6f
SHA512 8b7c71ae17cf5db82b5fe9cbedbe8b283eae88e7369795f69d6cf5288b3bb6d385b25a0c0e00d44acdcb9bca88317109adea4480c50abddd9ed33688a4c025d2

/data/data/ir.teliyam.pitza/databases/evernote_jobs.db-journal

MD5 a4f9ee300b4ce4a5df43118b6f333466
SHA1 ccf837c5d0d068e2cb77721b086f5c17ef480b47
SHA256 6de6190a29a70e52ebbc5799a20dd06d52b7ae889a788eb770546792ebf0daf7
SHA512 f7d48a9fb25ea840610ea9b14b950357ed0b24219cfb751e89ecb34c3d177846d735590d2267fa20f0a5ddd603a837b2d79085b2dfb97eb90ee406edb05b3c4d

/data/data/ir.teliyam.pitza/databases/evernote_jobs.db-journal

MD5 5b6844deaf3f4220924999749821815e
SHA1 fb0803bdbdf9c56f911e20632d6ff5d2849aa201
SHA256 5ced9d0971e4322db70e4a7ce9a0fda0c3c8eccea65ca128eefac702c3c0afc9
SHA512 505f2b738858b74d689f15e1292b44af35a872b4e6ff30f0c4bbe2f98679b33a4674dde9b7158f5d390f9d8fcd18239f69d21bfe53702182ad8641f5ef88d998

/data/data/ir.teliyam.pitza/databases/cheshdb-journal

MD5 2c45a4b1d4bfac2efc59e51c5456511d
SHA1 131b7ff86745f14218c03a57f2305bb587e9d237
SHA256 dc6fca3526e86e91983797db49998acfe38716d24b6165f6ec3900bd0b658e73
SHA512 5b12bbc02093614621f660b9a491c8b8b387d147151ee6c502e8c2044338dfc1fe1627131b3f7ce64913ebfe21de9bfacfcdefdaa49f167a35106c233180eb62

/data/data/ir.teliyam.pitza/databases/cheshdb

MD5 5349fa032db63354cfea3b8e3e6828fb
SHA1 bdcad262e453f4b4cafbf6a7a165b33bb7b482e2
SHA256 fdc4955e1443af057c770b5e78227fdacb51459a260be1b8cd4b7eefb39a4456
SHA512 034210eaccc55252ff2c875ffaf6b91f9a8179d8bf5cad891e530591658d0127e829b723a0aec744a0fb842bc0f7923c36ce53d8464d1db21318a1a5cb6c807a

/data/data/ir.teliyam.pitza/cache/1582435991586.jar

MD5 e8e0527a01aefdb89afd2c508f131da1
SHA1 f1103e6b260c657ceb3d95f1b023af3fda8b133a
SHA256 f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce
SHA512 fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34

/data/user/0/ir.teliyam.pitza/cache/1582435991586.jar

MD5 fde2ee00cbd121cfab5290b078aa3ceb
SHA1 e2b77d5320e155e413d040a8c20020962065b2f8
SHA256 2897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685
SHA512 a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56

/data/data/ir.teliyam.pitza/databases/__pushe_base_lib_db-journal

MD5 762f5bc41b341de22a805c93a429b761
SHA1 50af8be144bcd517f8e8cfbdceae99d2184fb75f
SHA256 73f1f776f3064e9846966eabe38c4b509dde85d66a2a6865afbdbe97f24d5de0
SHA512 4091ef1cfdc09a3db6006287674e817f6a5141c67a1c6f4294e567c2766ac100d4e7b43e4b97aacc3b9f7ead048be10b7a78df5715d9b4de798b4e71dc457377

/data/data/ir.teliyam.pitza/databases/__pushe_base_lib_db-journal

MD5 14ac1bd143edeed9d8c8fcad17b68964
SHA1 756868982201cf57bffb6fae8f88d0e0de394953
SHA256 472827d4833716513e461b503f73d6948f300a86c7713fbf674de6b56a74fc21
SHA512 ccb587e66df7778f6ac9f4da3752121630679a63a438816d4d3df8ff1b0a04aa0b22df2684cc584ec816529d4e9f1436200358c45c7f056293d8cbc72c56b2dd

Analysis: behavioral3

Detonation Overview

Submitted

2023-12-23 13:19

Reported

2023-12-23 13:41

Platform

android-x64-arm64-20231215-en

Max time kernel

2531769s

Max time network

140s

Command Line

ir.teliyam.pitza

Signatures

Requests cell location

Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A

Loads dropped Dex/Jar

Description Indicator Process Target
N/A /data/user/0/ir.teliyam.pitza/cache/1582435991586.jar N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data)

Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

ir.teliyam.pitza

Network

Country Destination Domain Proto
FR 216.58.204.74:443 udp
N/A 224.0.0.251:5353 udp
GB 142.250.178.14:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 172.217.16.232:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 sdk.cheshmak.me udp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 1.1.1.1:53 admob.mehranarzani.ir udp
BE 66.102.1.188:5228 tcp
US 1.1.1.1:53 www.google.com udp
GB 216.58.212.228:443 www.google.com tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 1.1.1.1:53 ip.pushe.co udp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
GB 142.250.187.196:443 tcp
GB 142.250.187.196:443 tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp
US 199.59.243.225:443 sdk.cheshmak.me tcp

Files

/data/user/0/ir.teliyam.pitza/no_backup/com.google.InstanceId.properties

MD5 8c9cb8ffcd69108bd62e28fc192cfacf
SHA1 5a423dcb2dac624c67b40cbcf34809f8ee0543f7
SHA256 7c6830fba0cd460a9aa2253c88635ab7494af8be8bed63b788cb9ac7679de5c1
SHA512 fe52f6ee51cf3855c4ed65d5050b9f92612cb023e6cc398cc16b8f2ad0b93c3b628e5b0c96556c3147da399064558acd5d5fd3520477757716d5a0e9760e7882

/data/user/0/ir.teliyam.pitza/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/48b4db0c-83dc-47a5-b4d3-033577913ce2.jobs

MD5 f56f328eea1d5c96a1b96dbbf59488df
SHA1 440c784cacff61932e2f61580b7cfdc3a4943c95
SHA256 90949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918
SHA512 36e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb

/data/user/0/ir.teliyam.pitza/databases/cheshdb-journal

MD5 d340bd3187dbd6658e78398e7be5fcb5
SHA1 d8f7a093dadcda6ce7e05b23689dd259dc5a0b9d
SHA256 9312ff143fc3229f2bc2b8e01dde82c1305a5595be7f14120f18bbc5da618e66
SHA512 7cf95035d4b8d479b96c5966c0b53f056cfc8c5e3698bbab11945028a60984c92ec21589021dac9962f6f9f78080a3e7cbdd0f0cae7fa287275cde1a04fdf78e

/data/user/0/ir.teliyam.pitza/databases/cheshdb

MD5 336852e98dbb11d0124c9be6a7ee4670
SHA1 eed4dd2b4de5b3d72ada1c2e152e8ac82d5cb2cf
SHA256 3ee1a8a660bfd2c4da33e212de71a4618e2e22274b9224eb9106101dc21ed505
SHA512 f3eca4841c0311e00c54dc790fa97a5a2eb2d049dc9f54cfed58b574b3f1898bc2982c9daf93a02b76804b37cecf7b6d1a402934ed1b73a48b1f84b6cb532551

/data/user/0/ir.teliyam.pitza/databases/google_app_measurement_local.db-journal

MD5 bf2de20c8fc09242ead8b1c80f33c7f9
SHA1 5c87bbaf7c5ac3aabad8455bcdb31305f8b9a825
SHA256 89a793b413983f46118d1abcd9bc8ed0d62af6c856e175aacc9354d654a33e68
SHA512 0312aa337083391669b708176be5623b24b9996385522b20682b9dc46f2a27099af172560a5cbe3b9c6731aa89270cb61480d5fbcd6b61cc9f07deaa497b99d4

/data/user/0/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 fd467594db2dd6db217d2942f3993470
SHA1 5ac5712e9eaaf7931f53aab7c9c1f63eb54fa2f4
SHA256 a2b37c3ab913013c0621a0486c941a8c0c5521bcc3662ebc45d0194dc7f5ec3f
SHA512 18b89a809b9febd8a0ddb8fc8d26b6fa85110a124ee63f377261ad9cec0187f6f4daf1d33c5f2d58b7a538cba780d0315aec2ed6ccb47f6eaabc692384bb64d7

/data/user/0/ir.teliyam.pitza/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/8edc0cdb-6cb1-4ef7-afdc-4f63f028e7f2.jobs

MD5 49a2d3d78fecc929b4357c6f20e0921f
SHA1 f589aa29d1424ef6b8a9d685fd9916fb7e5ccfbe
SHA256 c34d6e3313480e28ad3fb9dddd05ba5e0f01285a77cf593d603cd6d7b9ac050a
SHA512 2934723222ce98c2a1b318baf57316fce077bf4c2f66e03e253dd39483616789299ee565d67fe5c16bdec487fa3d45a67e3c1b08d528d38625c250427f53180d

/data/user/0/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 069b007cd6c93decc164dd943fa4846c
SHA1 5d07d666e74f87f04346d15e6ed529c7ebf2d8c4
SHA256 92680e8499c8893b3d7460b1dbc179557cffb4db90a8d76360a9948a48b9c5ab
SHA512 1b06dcab10ae3892bc2d68ecfd31e341d058129d5b45099822578d487e13e0d2c9171f9142c6f13a61fc782426be54ed5c331c7514b3d0f87f0f33ee30cba795

/data/user/0/ir.teliyam.pitza/databases/google_app_measurement_local.db

MD5 7abb30994d78047d2a19341953b9599a
SHA1 a8e5c4f8fa6eb5fcf00527c325f53dd29c47be79
SHA256 55e9b9a83590634b29c06d5de449f855293f4534d3299df4b6e7240d81e07f46
SHA512 874daf4d376de83f8b0a14f2337e2742201269baa341f3ad2f77d506324f0606dead74c35b605911c24adcd7cbf7c9a43694659976b2d1cf78953f7947abd87c

/data/user/0/ir.teliyam.pitza/databases/__pushe_base_lib_db-journal

MD5 73e0f2c54725b6364542bc5d5db5a94a
SHA1 7462b14fdc09c67e6843731fc8d4fcbdb71369f4
SHA256 b53692b64b93cb8a8c74ea7e22160bdfc78b2846accaa47cfd2b3796fb60f679
SHA512 b699ae146773688a81a59568cafff536b8910240b67b4685029761b43c011cd3f95353a93a50fbd4ba8ebf3bf7340bf99daf4c5053cabc3c423990120ff93e1e

/data/user/0/ir.teliyam.pitza/databases/__pushe_base_lib_db

MD5 f41f531c07d4141546a531ff9caffdcd
SHA1 9dcac5aed06972d0ff6bd4cc1f1cdff85b36d3f5
SHA256 bb8dee5b5c3779f175abbd142722eb0022b98d374783aa80145b34614a4de646
SHA512 e0c8d1a820cb4c098e45776e8b50ea8c83944ef2e3f005cb0acbfc07688974d370f78100ae022f62564fc4c12acfdc43b710c18ca1c30f4f575bc08b9b12d2d4

/data/user/0/ir.teliyam.pitza/databases/__pushe_base_lib_db-journal

MD5 d4ff52df7e387fffa5be5b8f36347529
SHA1 6c4bfb4f6309a7076ea28ce6c0b4f151b062908e
SHA256 f00725dc48318fc8a1c52fe6e97b5e5ffa280874536dd357ae0b546b674deb18
SHA512 67c626943b363e7a7337c053d600b0c0881af252357124be5052b5f6d2162f345ad4bc7f0e962810aee8ececeb59235e418a7d56f2091f51aa6047a908f85e01

/data/user/0/ir.teliyam.pitza/databases/__pushe_base_lib_db-journal

MD5 b6d813d63c2df2b416ee7ed20163a8bd
SHA1 0dab5ee12e0871c605a8380329246b434421eef1
SHA256 db948193fbb7def6553ce6b7655ce7c72bb1068236fbd7524174f554c87b1606
SHA512 284673ebe965d5476607ad5cc54426b2a66fc93b2bb839cf5d299d426f706d8f616320b48307d5b629dab38960fba9789ec1131425fb42b93e99b78bfc1824bd

/data/user/0/ir.teliyam.pitza/databases/evernote_jobs.db-journal

MD5 11944f6295d57c466d1bff79f88cd1f3
SHA1 f1ce7881419c5713285d49d7f8f07aa4cfc83079
SHA256 4daf1d73639d8e26df25beb8ca27cc53a01563b65fdd6599afd7cd464881eeaf
SHA512 c784e20335a1eaf5790fa413374bbc8542f5a30da03a932f2f18c460d89ca5ed16487f0dcad73918e7a207243793b118b425cc7e6dbcfa365f5ceaa0ae35f1df

/data/user/0/ir.teliyam.pitza/databases/evernote_jobs.db-journal

MD5 1a768082dc84e8b9851edd98024dbece
SHA1 312e265ceb5fe44e4e5372c87986ce2b382c07ef
SHA256 ca4695c3c681778e6df80ab1fbeb9ce61d50df01bb7ef4360a1e04714d2dabcc
SHA512 e502999ec4c57dcb1f2f00beaf87f570e62c6d2d3bb89afc6c27dbfc9e0ae7a8dc3a207af45ca9b98b625738d61812ee97b080aa26a9531ec4cd850a4ebd205d

/data/user/0/ir.teliyam.pitza/databases/evernote_jobs.db-journal

MD5 06debceb4739000055fd1e2a7c9dc389
SHA1 b4c5bc9d7af811ba61a18e0730a3a9ccd79af4c3
SHA256 321c272c6a106e0bc22460c59ca0769b18571d9df2531af6cff7ff1a61ecfc46
SHA512 834c4d4482b716a96cd1daa235eed696d65f10d3a7e103db8ca0d791022561960143a7ae19f3c7fc89f5098ca67e69f44893ef7472cf165be3fabc5da8d0152a

/data/user/0/ir.teliyam.pitza/databases/__pushe_base_lib_db-journal

MD5 1d1edd07de3e8207d44a265a68964ec7
SHA1 318170ca024235cd0fd40b39971446dc45ce7053
SHA256 9a7e6213d9aecfe921b3400634e69944ba9f7540f600ab7934fe2e55c59cf11a
SHA512 88931ea643aa8c34898e5d252b9c144507aa44e36993f5104b68f4ca05c0429648fc2446b86086c1e4e2697bed922ea0d7440144f2cfacfeb0e32a2b8e157d95

/data/user/0/ir.teliyam.pitza/databases/cheshdb-journal

MD5 3e35bb679d0bac313856e27d6be02d3d
SHA1 81bd48d3c60ffb4fa095b1653e8fee348dde1aaa
SHA256 1b6496cce1491ce97e7e5b471228d1b1c40be5ad960711f7c118b9b83222899c
SHA512 ab24a88e17644670139bd497311be89d37ac311489a55ed483721b5cd0b0b041ca865532692f80eb095cbcfcc9ce9dac40df9b541e481c89706f8efab9efbe71

/data/user/0/ir.teliyam.pitza/databases/__pushe_base_lib_db-journal

MD5 e4c6d711b31f08c31293c88fd35407d6
SHA1 3921da72f76b24d9c4ef01fe6027b3c566cd7b08
SHA256 fa19c360d76e32ff070b4d0efa930a2d059de14b31ead8c564c12b5125e1380c
SHA512 a2c617279dae761b85eb0cb176b72d277cd35ff283308d3daf94ae92db76cbc961192998d9f0d02df1549697774908833da6e130bfdf26891df655bb90411583

/data/user/0/ir.teliyam.pitza/cache/1582435991586.jar

MD5 e8e0527a01aefdb89afd2c508f131da1
SHA1 f1103e6b260c657ceb3d95f1b023af3fda8b133a
SHA256 f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce
SHA512 fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34

/data/user/0/ir.teliyam.pitza/cache/1582435991586.jar

MD5 fde2ee00cbd121cfab5290b078aa3ceb
SHA1 e2b77d5320e155e413d040a8c20020962065b2f8
SHA256 2897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685
SHA512 a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56

/data/user/0/ir.teliyam.pitza/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff