48e9454d4e2151340a0af9b9a88fc6a3ab0d73ff87820dbce3ca882b2102eee0

Analysis

max time kernel
2545771s
max time network
131s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
23/12/2023, 16:23

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

48e9454d4e2151340a0af9b9a88fc6a3ab0d73ff87820dbce3ca882b2102eee0.apk
Size

8.1MB
MD5

b3bc671950a0cd1e8c62d4b3cdea84a2
SHA1

4da3fbbdf588820c634c881923798bd68d84813c
SHA256

48e9454d4e2151340a0af9b9a88fc6a3ab0d73ff87820dbce3ca882b2102eee0
SHA512

71e59893299f64cfb8c5edc8baeeeac2d0fa56c09a6a2e1bb92d4f0de7b32a640d64378a2d10e2866ea7400813a13b39d24e7f01f4ff5e53f5bfe5c22dbfde17
SSDEEP

196608:edYoVDhLFYyqjNdWnRtozMngFpWm0Td0GFA8P6XWF:SdFFsH+yMngFpahJF

Score

8^/10

Malware Config

Signatures

Requests cell location 2 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	ir.nahideh.lazaniya
Framework service call	com.android.internal.telephony.ITelephony.getAllCellInfo	ir.nahideh.lazaniya

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	ir.nahideh.lazaniya

Reads information about phone network operator.

ir.nahideh.lazaniya
1⤵
- Requests cell location
- Acquires the wake lock
PID:4227

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/ir.nahideh.lazaniya/databases/__pushe_base_lib_db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/ir.nahideh.lazaniya/databases/__pushe_base_lib_db-journal

Filesize
512B

MD5
d1d6cb9c871e4556ca3bb1b99c10d9ae

SHA1
06046205020f92a72a0d2b64f12dfb551666ff53

SHA256
2426d77998fc589ac9eede0e117472b2b355285ae488b68648bbb54f6ce9022e

SHA512
b1136cc112d4796ad20d7e264bde7b2423f4b1ef6d4674a1461ee87ffc56b88d1a0cf5913394ea14083c97bf22c8f3276d1873f307965c70b875d259de0947bd

Download Submit
/data/data/ir.nahideh.lazaniya/databases/__pushe_base_lib_db-wal

Filesize
36KB

MD5
ae2c3efbf1d9b027e9fdc6f9b8fb917a

SHA1
7d1029b925d8aeedad16d9af945889deec8bfc57

SHA256
193fcb35ddd5d4447949651bacba258b1c1b91ddb6bf0aa8854011f8705040d6

SHA512
f8258974062d736dc81aaa0a704d4529013a6d4613b8113b6276e3695c726bafffa68fdbe5b37401b57be0f2ff7954bc41016706728f726c4b362b1c56f1c277

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db

Filesize
16KB

MD5
b72770f0883f1fb3aa781386ef1e0ce6

SHA1
945cb0870af0666dd9f3eb67f8fe5b2f0c4e90a5

SHA256
001ae23fe5cc6e0d09f4a47b1c2655fb7da532e3fd8afe76f7b15009fb90e3b6

SHA512
a7f41e5fb72d3daa0f12c05cb2566a78bd3b2543900619bf3be5c16e3620195b994608010cc41ccdb51d6ff41493f4056befa7d9f6a332f533f543388e97bcc4

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db

Filesize
16KB

MD5
978fdf85b8448e3a7c9015e51477eb49

SHA1
793bb88398dc9457935a4416638d5ed3974baf19

SHA256
8f72919eebbe45ed6d33b7b763d7e45d76a880128aee9aa5c29d28ab79689a92

SHA512
852b2d3e2607c96625e9bcd454c702ccec6a0f07aba3410976d6400ecd2d48ccc92d93c8ce7fcc87a622d04357bd6805a996f11d339ca7fc3eab99c0e991fe38

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db

Filesize
16KB

MD5
431a1ef5e7c73a10321f012744eb67d3

SHA1
cbe03195e67cd2fb18410fe5915cf5d288432bfc

SHA256
fd158dee1c6080dbf405e36a255fe132d557241802bc13e2b5479e2108fd1a79

SHA512
32778949b555b49a23037d87bbcf495c9b8389a5d45eafcf0c23976074439b5b4b225fe78bf6edb7b40ec3664487cff2aea535c8333ff1a9072be73a6aa87552

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db

Filesize
16KB

MD5
2bcfdaf52724e032ab3e00e73e793094

SHA1
6787be8c7a1c0d6b240470cc0de2db512064a7e6

SHA256
493c38d49244c0255419332477604eed776c9f1282ad9d4c150ee023e434f769

SHA512
d83140147ac25a04ab74400fe100be9518e6db45bcbbc78d0ebccada58f2a5cf8ee295789d0d119bcd4985e6f3d26678aa97f82e25e4f4ef3bcfef903e5b0f64

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db

Filesize
16KB

MD5
bf11724cccf2a08a4948e3195933cd0d

SHA1
ce84cb7f345b166c316d17d7bbdbcf30164dcd8a

SHA256
ecb8601dbf70a356f7b5cc65636b768b40cd63d83e5511b0fb095b26e0d295bf

SHA512
f09b23c5ab022730b32544a0dcfd316eefe5e983d917b4b117559df0a23d2d46144e90fcb6726f7c901ea720e6dc8a7213e0a61910fde118fe7f02218b676796

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db

Filesize
16KB

MD5
1824724596d41aad37dd2aa6250d062e

SHA1
fe4da04ef720bd54be03ecd089bb5d1d706a796b

SHA256
58116d0c8792e0e5df84e3cbc303d798250a17e39baa976fad5eea89c12eb279

SHA512
a354805c5792124665d600dff7b46a258d2ea2922fc7bbe2692ad821faad3f78d7df05e4dc26448a2c86bee62c3069dbf02fb93b9ca18fbeb87e7706d1c7873d

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db-journal

Filesize
512B

MD5
a8ff92fb985562498916ab42dfa41c35

SHA1
92fa8c38193598c2d69a35ca3249d19765507880

SHA256
e95f71721d7187f1ff1e8d3993ace0c9b6f521b50bdea058abdd6271aec16887

SHA512
a118c373369e40faec2f2eba8c8b4d7591c172e3df31851b10fae14e667f7d2a7ce004d1ad760f8d232da339f3d8c6ef127559019ced2c998257598afbedb731

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db-wal

Filesize
4KB

MD5
a21b9073fba9bb3f872c090da4bb95a5

SHA1
21db220051ad3a7684bbc275640bcbb8a2a82e93

SHA256
a217770a62abc3e9236cb69b2fd5a07b7264b1b184d549053ee65726da498fe0

SHA512
2e5036516376a9ab91864cd48a826498c58b52bd4099e1b1103fa8d6c32f255d03d6e17cac6b248aae44cb8a00c115007e2d95adddab9cec1247b8bdf09625bb

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db-wal

Filesize
4KB

MD5
4cd64b9420fafaaca44028b84ac68ac6

SHA1
e8b1e45fb245e19864ede77631b337e7a681fb61

SHA256
b785049553b4056555c13ce8640609441a6f528545aa366baaa4170e6a7fbfc5

SHA512
c68e29ded7210539214216eaf0593f145a87024c8ee839b4a7c3fe15c215c5f196697bea03e6787b2ec99e0182aa71043aadce9864e9daa8176feb35176d4865

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db-wal

Filesize
4KB

MD5
3633545979e268846889bb343e39b4b4

SHA1
7a938532dcf22c4ef1e55619a81471a3b9614264

SHA256
6d98a28a83a8564f19a99c1ffdccbadc4a0b645292cc0f93a975cd74fee26b98

SHA512
bbabd4731ef972718fcdc3042876671b7fcb8dbec770f3ea2d90ba2e46b64702596083c4f95f0e7164a57acfe7e94f0e7334c3c58e33912264a92d3d80f33c25

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db-wal

Filesize
4KB

MD5
838a50f6e2398f6d4a9ff66a46eeea23

SHA1
5b07c0fde06e5050620b08fde951d54c93a8a9d9

SHA256
364566578c52146d582468b6cc11c381aac56cfe2daa15883ebea7f351218bab

SHA512
7499da9421cab1cbfac28d37745ac8dedad9b3cd19d4a8d49aeb48d8f3915a6871f588947c0fd69bbc79996ec6ccce5a937b52b97c1fe1bd07cc02792fd914b2

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db-wal

Filesize
28KB

MD5
9eb7e8da8871a2591bd6ff977cbff558

SHA1
2ff7c197367b99a973d218e322c74deeb436651a

SHA256
a0fd95c917291c61a5c4727068d4863b30290374e5312d884f40533496486005

SHA512
01eeb98dd705ddff86ce33a23687db31e866c921c6b165fb8307bdb27dda9bb27b25ce95061a727760409fb7a863a2f74234e5f1e7e16b8b4920b97bb114d247

Download Submit
/data/data/ir.nahideh.lazaniya/databases/evernote_jobs.db-wal

Filesize
4KB

MD5
c9ce979b5ac1d3cc32d3f3b987cf26f2

SHA1
785ea1259dfc268a8945f31bd8059fa40d9e3efb

SHA256
9f7212266941dfef789b635d4445fada781e10efc91f73020eb9f567ce27c170

SHA512
ba402dd8e48f7bbcf13b66b344e2ed16f6dfd7a0d6fbaa58ad45d42b389398a92ed46fa208acb91035437a5424cea38142761e3e79a19ef00b7af4741e614c17

Download Submit
/data/data/ir.nahideh.lazaniya/files/info.db

Filesize
856KB

MD5
b11b503ea552774cc364088f6acc31c8

SHA1
c821de0dac73d72fc0b166d74e09b318f7aebd00

SHA256
d2305d315f9fa6f891b79594d81181f4712985f02939e3441d7b8fc78c3795a1

SHA512
b5ecc6cf1d404542d3179cab4376e9389847b51f344fde9cf9a27eb1bd25aa5e9c6c8c13d14fcb65c40275399b45e3c38e8b7fe874edd72ceaf02a1440d9ad28

Download Submit
/data/data/ir.nahideh.lazaniya/files/info.db

Filesize
4KB

MD5
447167ac364f7c5408462d57f1e5b38b

SHA1
c999091def3735a1765f993e46cc9b244742abc7

SHA256
2d6ced53f21797881b5541dd3d03cd5536e996d7745cb3a3358da36795ad6200

SHA512
6b95479ad54509936491bdb9f19ad8b9d9d23b18362a4f96bdf494f5065291e8213f37603bd8228888a3c45e03358e151f139ec5c72a389c3937b7174b58f7d2

Download Submit
/data/data/ir.nahideh.lazaniya/files/info.db-journal

Filesize
4KB

MD5
8ba88d5bce963c18a6399e454c1caaee

SHA1
8ac451263bcc4e4a4cca7b9693b4d2e69b786af0

SHA256
eba46cb0435175c2dd23fa726145fc0a21a4dc12e008bc0780224f66276d5a7f

SHA512
4bd8e8f635876382bcf91552140faee23a8e5efd7c3eddda58f186dfc5931e0af1dd0e822b3635d19e105a26efd698ade33a066f5cb610de09a2ec0c99ac2783

Download Submit
/data/data/ir.nahideh.lazaniya/files/unsent_requests

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads