Overview

overview

6

Static

static

1

2a7da0a302...c5.apk

android-9-x86

6

2a7da0a302...c5.apk

android-10-x64

6

Analysis

  • max time kernel
    2835806s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 14:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2a7da0a302d62842a62d3de55b4ea4c4ded51bff1cf283e26c7e290d4fa221c5.apk

  • Size

    6.6MB

  • MD5

    b991adb8a119f9935c1e680d816d7a32

  • SHA1

    fcd807d771ee1572ef44d141c9aa33c627e02f88

  • SHA256

    2a7da0a302d62842a62d3de55b4ea4c4ded51bff1cf283e26c7e290d4fa221c5

  • SHA512

    0aa50918951166d73125d777a3338923ba165bc92da3d45c29aef182c39015d5ef6c36a21ff87b2caeb980f4c37f27105a4ebdea63f06bb7dd641024d0e8e699

  • SSDEEP

    196608:Y7QOKhZlZJk+DgiaAG0W1hWeZXxk4izKx0CZpZ7F:Y74brkAgDzRhWeZXxkH5wZ5

Score
6/10
evasion

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.
  • Checks the presence of a debugger
    evasion

Processes

  • com.jb.gokeyboard.theme.tmekbdcolor
    1⤵
    • Acquires the wake lock
    PID:4497

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/app_tmelib_KinesisFactory/KinesisRecorder/kinesis_stream_records
    Filesize

    609B

    MD5

    9c94b7da2d7212bec94610c01805a1d1

    SHA1

    82bb38f6d96d6960ef3a09e5fa567cffbae19c20

    SHA256

    39d7f2bea3024232484ac61d1f7c367235f455e8e8ec09ec8935d2f0052b41c2

    SHA512

    b3f06c1c091d6aa8e489fb7bde1c8d16cc6f4f0bd0a054a404bc27cf4caea21433fb3e4e4e04f7b6415ed150f17beea7242996a29d1327c56ae79756fb64f246

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/app_tmelib_KinesisFactory/KinesisRecorder/kinesis_stream_records
    Filesize

    601B

    MD5

    416d5fa68740f365334fdc36a0c60ca7

    SHA1

    c6c44d9584b67a5de20800a9d1bab414633917e2

    SHA256

    dbd6cefa8eab4cb49d62281d872e10b8af1fc2fcde0291b3de79cd8b1b400c89

    SHA512

    0b72e90b353a0ab7c36c54d27bf972d629d691a409abd7e710895ee5ebe168282e7128ba907763d95cfc8416292fc4efc51b09af863552c3eaf0ac13e6298fe3

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/cache/settings-manager-cache/ff771eae3c31249a7140a3c9521ebae4.0.tmp
    Filesize

    749B

    MD5

    e6abdb204ce86fbb3d5cafe6f94f1e66

    SHA1

    09dc27d39c84d90ce876d987f7eaf50404febb0c

    SHA256

    a6251f76eeb6acbed0cc59e02727f91ef7bf6b391b90ff93fe977f13db0fd493

    SHA512

    87476dbcf649dd2be3367095e7653147b1e5cff0e437a7e82e5fa400feeff687f5c6d4d36f6cc4408e55d1a8f53892a9de5fc672560525c54cfd5963478c19d4

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/cache/settings-manager-cache/ff771eae3c31249a7140a3c9521ebae4.1.tmp
    Filesize

    2KB

    MD5

    033e81d28c98fbe364c60bf861b3a6f5

    SHA1

    cfd4c9a57ca471c52132162a5afa9c7aee398442

    SHA256

    25bfb2e8144ed69b80316d42ad10d00a1e9d18aa05888d85aaecc1e90f2121af

    SHA512

    8d0b31b0b6c6a993fe142cd654752e022a9e5778693beb69fcc2a25be68ac2cbb86c87f00e18088f4a3c72a967646910517b5d3b7a5d9d4118ffb29dd8ad8677

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/cache/settings-manager-cache/journal.tmp
    Filesize

    36B

    MD5

    37e8e716e0e2f4a0b05cd9571d95b84d

    SHA1

    f8d068f6931707bddb8cd69f706f2224ad1fea3c

    SHA256

    7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

    SHA512

    e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/databases/evernote_jobs.db
    Filesize

    16KB

    MD5

    02085e4c494caeafab1203f7a0fefb31

    SHA1

    a17841f5ea1b00b4d52782b08f9a8cb7eda04712

    SHA256

    5acec128f04de7b618a172a04eefb7254ba3fd629d84bd13b7f4ec4fe3ef7898

    SHA512

    0ad112f8daee5b76144abe9b21696a605ed8b4e5b31e5c92794d272137603e057c5a072c263135da7869a80d32264417fe0e452614200c2a0e503b671b19ce66

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/databases/evernote_jobs.db-journal
    Filesize

    512B

    MD5

    4cf77fcb7e2e075753272cbca66cc776

    SHA1

    be6fafeb05895fdeb86681cc004fde4a129b6aa7

    SHA256

    2546a5242b5e858f07f8c4f60e20bc56cadeb5defcda137bc5e1c2966366c954

    SHA512

    de52860cbec354d9062719c5b0f2f63d2a7e789f9c3e027eeb42f21c822e0cc9a925e33be795986fc01640bc1a8e3dd80f474b6318acd479bfd3cac143beca47

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/databases/evernote_jobs.db-wal
    Filesize

    16KB

    MD5

    d665b78c691488ab9b2ffc0e99a878b5

    SHA1

    ccf4c2ec12a52b2bcaf17985fa7e6237a23076a1

    SHA256

    1168bfc02521260b343e6a22698bbd5cb9810328f98ee3cfddf45507f49ea989

    SHA512

    65f0d92dbf2ce5a1938aaf7a56c66d881d642713505a7d76983aebc7fc09ec29d03d505a59c8e4ccd79aa6bdbe9b8dacd7fe8f22362e0272cfa635d0481486c4

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/databases/evernote_jobs.db-wal
    Filesize

    4KB

    MD5

    ff56d020398525c14c8bb7df89d297ca

    SHA1

    9c97f3fec8b564bf944506d988028dc4156f8024

    SHA256

    afaa040dc27c121617a7b9403fbb4e57b3a558743c1a349a9540ab0572afd880

    SHA512

    f7062652b5b45a9d89a16fa3ef21f1af58eb38bceabd1f08581172ca33f20962b3181d5d070fec4184e6ff6d6abc37ab0c95400e498ae901de6edf76251d1fa7

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/databases/google_analytics_v4.db
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/databases/google_analytics_v4.db-journal
    Filesize

    512B

    MD5

    d0f4dbde7baf1c33ee6b52cd49c7fc09

    SHA1

    2211e59debe5482e19fadffef8c1e8194a090473

    SHA256

    33daf9efbe43c17886213cb7aa6dd304b5b2aed5db148a729c847053154f5480

    SHA512

    3e99667d94071e1bb3aa265c2d450b63ef8115b84d87caa56503670086dd089f2ccf9fc0da5f193df060e1cc0e2b3ea2b4fb18203ac30b6564d18c67c3dc7e92

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/databases/google_analytics_v4.db-shm
    Filesize

    28KB

    MD5

    cf845a781c107ec1346e849c9dd1b7e8

    SHA1

    b44ccc7f7d519352422e59ee8b0bdbac881768a7

    SHA256

    18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

    SHA512

    4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/databases/google_analytics_v4.db-wal
    Filesize

    60KB

    MD5

    9c5adf93398f20311e2ec0ef5488f517

    SHA1

    c7bec00c47517fb4dfd6a1a97f540091f64b042e

    SHA256

    6495336ce5d960f1914f93aa4942e066ab1fe9cc7d4a6dfe6372e905726716bf

    SHA512

    dc0464132cc779c7e606783f3ae98d6427d0139e77f7596e6db3c510412e92e3343c4f44151ebf2f0d286e6d3ae68eaf9abf8d4e8077aa25b28cc89a135df0fc

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/658B865702E8-0001-1191-4B4060993186BeginSession.cls_temp
    Filesize

    77B

    MD5

    8cac5d10e593887a8686463a1f1a1a9d

    SHA1

    9fe2bbfc0226b9cb15260f8d30292c9a0051c169

    SHA256

    396c1b1487b927cf3dd46c7327a0ce49a370cf8634310bdfc9e65d9fbdda19e2

    SHA512

    41cf9b95aeb3d7a77a7d4e7f8395cc835f1e37e289fa5730dc484353234c1ed127b7252762c73d6837d62cfe23ae31c5b487c52f2dea3225d01a3e5c397defe9

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/658B865702E8-0001-1191-4B4060993186BeginSession.json
    Filesize

    132B

    MD5

    e80e6b28a5c317636dd072b60a62baef

    SHA1

    f9f5d37f262b8dbbd2501a1640a023d3727dce2e

    SHA256

    8d445cd1adb2fec85d5a0b462012345e3f1272f96055e5d0ad9d700c1629e66e

    SHA512

    52f6b9b9902e2d70837bb9134588e3bc0e9b7da5219b46113f95cac1bfa5b45da3800d14ac57c7201f5d9478b6e18c9febf80586e5002c29aa47d9d9c4d30924

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/658B865702E8-0001-1191-4B4060993186SessionApp.cls_temp
    Filesize

    137B

    MD5

    45d101b67fabdfc13809ec0ca5c52eb0

    SHA1

    31bcb808761e4f8f61a8f6868328fac4f16421f2

    SHA256

    14aa1b8bde6ca8c6a740cc855c891d262e1281af585e597458fb6b95ae76e393

    SHA512

    8bea24d712ff41b4bc99ac6164de280f0b0a0defd3b0728936747ab39dafd970d60e2cddc830669edee512f0a694bdd734a05ec029f6c497c6380cafcd9d6e47

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/658B865702E8-0001-1191-4B4060993186SessionApp.json
    Filesize

    250B

    MD5

    9d6b8ec39aa5a19b9baeb2610caaad4d

    SHA1

    12cecc7228702e7f66ec59a5e9a7805c23d60761

    SHA256

    056294d778169b161e4fbad2050207c5076f8dc3bee68f926a2c621c1dcd1765

    SHA512

    aed79ee1d2553aef61d61f55e87442533293223f5b772152ef54ca7ddeaf8346e4fe2650b866ee91c379fbfa482988ba7fb75031745bb5cfc012aa72764e3c20

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/658B865702E8-0001-1191-4B4060993186SessionDevice.cls_temp
    Filesize

    90B

    MD5

    5381dc6a4e4a46edc0799bc986501014

    SHA1

    a36769250ef7d8c25cc1912632a06f2eace22035

    SHA256

    8e2047499b5dafb77287c341363b8816c0ba930fc81469cf24bdb1f2fabc45d4

    SHA512

    5975359bb97dc02437557952eefa60dc68e6b8e8a9eb79dd3f1d6e43f9c6e94c04f52e58760283594c24a4e2847909711c6ce065c789bcc24fede5340663dd0f

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/658B865702E8-0001-1191-4B4060993186SessionDevice.json
    Filesize

    204B

    MD5

    5d1ce0f2aeb4721dca215b6868007c78

    SHA1

    d93ce1169ff37b19a79c7b4494d939a1f4c082fe

    SHA256

    44c8829bedc7d9caf7357dd41aa13e838ac1fa5a055af3945819cfd6424a93ce

    SHA512

    890f5a61c21643f31eba828cb0fc4009e0417e8885846605a8ce1c969f5203c62235d3ab76d79fc31d855238f8eb9eff6d1676f0331e9959a0f088bb0acf44f3

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/658B865702E8-0001-1191-4B4060993186SessionOS.cls_temp
    Filesize

    14B

    MD5

    9b3d4522944ce6396563812bfdb92fa9

    SHA1

    6d2a6133c8f01938a48ccc77ef86ad8ca335c020

    SHA256

    d32805d685a3f50caa7f1c0bd7c8804c4d937a866513289f60e3184f7a591ed9

    SHA512

    091d87643712530bf9006135db42a5a50742bb5ca3026bcc5f2c1c17bf4fd984a8938d29263b0abde3d15cac196d2230902534e200b0b79485e3a1bd97d95727

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/658B865702E8-0001-1191-4B4060993186SessionOS.json
    Filesize

    54B

    MD5

    93023624eb8dff5c20050da136aaae0a

    SHA1

    acfd1ffed752c28fb135ba83c0c6345ddf2f6995

    SHA256

    968bcd7c4f1abed89a09cc0e6dadd238a81e8655e64196b39a86be49ceecd39c

    SHA512

    bb25dfa144d3f0e17203936c503c5fedec5f9ca710e177f99e273010ba4a682199d4bda5684151d65f3cb1549f4611b3a645ce39646d3db9a1b2c17d6b160579

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap
    Filesize

    508B

    MD5

    de83bf921f200b01a9fad3238c767a4a

    SHA1

    c91cf994ada3b8526d9bbd03fe4e1da8e9470ed9

    SHA256

    2cbd03852375e743b617975d0df18ebb5b88fdbe050f5551248d88db2af1a8be

    SHA512

    835e56d1bc646bbc636b624215c85969fdc2f8937f0023af0eacd30cdb57b95c99505a31f3c19deb615ca0555ff504769547b7b3dc7f7e570f80f13adb9f7b21

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap
    Filesize

    529B

    MD5

    73955be36065e75811b4fc54f749f39c

    SHA1

    98d07988d7d31fdc814addce17cbda86933b5246

    SHA256

    124dcec02c02ed216bdcfd436d5bdd9262f574f1f32be8fb20b74f665f98b3fa

    SHA512

    3f95bf458430600772e23a21a344e4f80f5a462e07a7bc6631152b210d085e30f0bfe1db66a0107c353b0baa80d25c479f3df31b910edf9074f463546fe4f2d0

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap.tmp
    Filesize

    16B

    MD5

    c33583fae4e0b61cde1c5b9227963237

    SHA1

    fe2ebe4d27469af1460f7e852031a04208ef629b

    SHA256

    35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

    SHA512

    fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics_to_send/sa_2172d012-5374-49d2-b652-18e309cd08d9_1703642714770.tap
    Filesize

    396B

    MD5

    cef44b6974b4ca50ae44f1069a669df2

    SHA1

    3fb25cae0f85f84a4640340d223e1b90640f37e0

    SHA256

    be8d5f652a6a7e0bafb8867e7793ae5b34759a08c24ad8d198eb0e1737f58f96

    SHA512

    8a8e1387536ac1559edb0ecddb936a62e6f6134ddf7110af56ca029444326d6c113068fb2bd64889b50ce381edb6be76725ac309861fc7df8e234becc90dad3e

    Download Submit

  • /data/data/com.jb.gokeyboard.theme.tmekbdcolor/files/gaClientId
    Filesize

    36B

    MD5

    c02a72b8fcee65846584a22a38b8bff9

    SHA1

    1c7a03889acd31ccd616152e00926f5ea2a00767

    SHA256

    abba73be6dc3ab1feecbd8c14ecd4315da91660662e2763267a446658ff1123e

    SHA512

    6190ac3fe8106516367fa028f0147f06adf83426fe100d224825195acd41464fc105d299f8def88cf3951ada9e36eec3f7ce0262437edc6367922c46f35b4c33

    Download Submit