Analysis

  • max time kernel
    2543942s
  • max time network
    160s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    23-12-2023 16:24

General

  • Target

    490fbfd77392f27de0594a490f5c5572dda276c0d10656ef1074115af603ae1d.apk

  • Size

    9.8MB

  • MD5

    f0ab02b24a5d53c924497372cb942257

  • SHA1

    7dc1ae3b196ce6b9dcbd7ea39c911200281e13ba

  • SHA256

    490fbfd77392f27de0594a490f5c5572dda276c0d10656ef1074115af603ae1d

  • SHA512

    98336708b057de8ad81ba9f8718b575049c1e18f5333908702dd157f4520953990e98be3b0fbba857e46519d3c8710baca62bf5cba74dd84ffb68bbd7ef4eeb9

  • SSDEEP

    196608:HJ2UUd2gIV+DrpZceNBJPOmstR7Sm5Fi3Rudy6cGo3eAYdXzZ3F:HJgd2gy5eNBJPONu6mQXzZ1

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.

Processes

  • ir.iut.torshy
    1⤵
      PID:4916

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/data/ir.iut.torshy/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/69c11ee8-7366-4de5-98ae-49fa7be3f61c.jobs

      Filesize

      176B

      MD5

      f56f328eea1d5c96a1b96dbbf59488df

      SHA1

      440c784cacff61932e2f61580b7cfdc3a4943c95

      SHA256

      90949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918

      SHA512

      36e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb

    • /data/data/ir.iut.torshy/databases/cheshdb

      Filesize

      20KB

      MD5

      d59300524ddf9026af1ed61c71d048c7

      SHA1

      3e5c601e21bc8b76a246fe6994cc2e11dcbc171a

      SHA256

      7ae7fd895cc835142a1e07b551fc676d00f2331eefa1c9794478d6b8b3a01c22

      SHA512

      bdc5685bb3e2f4cc8d2bbed6284817671885e0826492a65d6f5eeb7fb7ffc5962c7d0f52803a485e2b0a3230ac127e33678d6b765eba8652cdaef655e1518ad5

    • /data/data/ir.iut.torshy/databases/cheshdb

      Filesize

      20KB

      MD5

      87738177428326078e36d40d4e14882c

      SHA1

      5fbb285d893a40269627eb45779705e82e5990ff

      SHA256

      0b07c58701d77e4612b57ca0886c575f1bc90647aa64bf0a0e796b5f7b762bc4

      SHA512

      bf8cbca9c5d4b0b0b4298d63c6b5337c60e3ae7e5ff525cb64c5e66aacfce8df6e72583dfcb9cd6ffaa0bff9f4e79337e94df3113245820c7e41093d93f49ce7

    • /data/data/ir.iut.torshy/databases/cheshdb

      Filesize

      20KB

      MD5

      f2257e39c3295ecdde753e8e444178b3

      SHA1

      64c7ef5cdfc2fdc32cd39d11c517081799901af9

      SHA256

      b38a087889f0e9cfce74a1ddfd3673b3dde40c4d2f43ada8f7427843acc12e9b

      SHA512

      f28d841724aa55b8323763ac87cb142092923235396561043d7d03d52337bbcfdc5be8f8960bfa174bcd79506969df510f5b17b2d6d2c8e2e8bd5f3f5406a417

    • /data/data/ir.iut.torshy/databases/cheshdb-journal

      Filesize

      12KB

      MD5

      9321afafdf56628a6fd9cf011c1be53d

      SHA1

      b809abededa65650d1a17be8a41b4ddce64df8da

      SHA256

      3b22d490d1b70afc3748c10febbc8c85e13c23a8723d093dfc70af4d729f14ee

      SHA512

      f029880cfd91721983c8a0018e01412bbfc79b14a4b0283c48042a163b0be773380d67baa96188e95a229a86117c7def5b9c13f411962a50f6607d588b2a068d

    • /data/data/ir.iut.torshy/databases/cheshdb-journal

      Filesize

      12KB

      MD5

      6206b5859fda53b98afe29cd263aba8b

      SHA1

      ff70a35b49abd4590807b974759284dfcf572d6d

      SHA256

      2dc16a26684498be93799f9b9be236e8f9fcb38a3845f840147e0b1df062c947

      SHA512

      71d79baf293968f4c8663872ab8f5e3f59814867bcaae24575ce7b4a2a2252f841a042a9115d0ab8cef201c2399f46d95d4cb56c0867237b6847dba0b9f51e6f

    • /data/data/ir.iut.torshy/databases/db_default_job_manager

      Filesize

      12KB

      MD5

      ea628e04765adaf4238a5dcdff4bbd51

      SHA1

      a801947619ea8c368efe9c006a324dc6339ac60b

      SHA256

      885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4

      SHA512

      c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

    • /data/data/ir.iut.torshy/databases/db_default_job_manager-journal

      Filesize

      512B

      MD5

      b7be04208fafdf1a00cf8ea49762266c

      SHA1

      3d3e07f408e88bc6423cc2b8a8f71fb3a9c4722b

      SHA256

      5f135c6f9646ac688d9b5fd980d0392d6804fc8f206d1407c3e417ecb8d48b8c

      SHA512

      81536f9a5ff42317cfa421a10a31bcf3e6b9441c43845cb5a8111e4759f8d4281dafc57afdbc814a9457ba064a2310c3e4277bc9c6fa356705edf16197c2dee9

    • /data/data/ir.iut.torshy/databases/db_default_job_manager-journal

      Filesize

      8KB

      MD5

      ef115437d160f383896b23078ef6b071

      SHA1

      cf712379c7b4956c3d13b7ec154b390dfb21e3ce

      SHA256

      01a93b7c6464ee22f012c618bc9d54060d9e28f92cc0163c1eccd859976f6278

      SHA512

      29bc226cf4bf9a6807daa3b3f0e635303050d7021ac099344b95bc4c19b08b69f5422bd7df1fa5c8df6e7d9a2d7047b6b930ac9fbde8dd08e72e5f20256fc4cb

    • /data/data/ir.iut.torshy/databases/db_default_job_manager-journal

      Filesize

      8KB

      MD5

      387b352f996ff4cb1985616377a08501

      SHA1

      7be6159b233b4f52d56b3b0fc385efdabfff8adb

      SHA256

      76e9ee805700e57ad64445c14b69cefefc6d8743e5dccdb355c223d281a89419

      SHA512

      210d00ec8d2c1cce379aa7b914dbdca7b46bd3194e38a6b3499da071e1dfdcdabeca95b29f446e0209e432915a9d6ea95d3915ee51d196455c715df9166af5c8