Analysis

  • max time kernel
    2543946s
  • max time network
    159s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    23-12-2023 16:24

General

  • Target

    490fbfd77392f27de0594a490f5c5572dda276c0d10656ef1074115af603ae1d.apk

  • Size

    9.8MB

  • MD5

    f0ab02b24a5d53c924497372cb942257

  • SHA1

    7dc1ae3b196ce6b9dcbd7ea39c911200281e13ba

  • SHA256

    490fbfd77392f27de0594a490f5c5572dda276c0d10656ef1074115af603ae1d

  • SHA512

    98336708b057de8ad81ba9f8718b575049c1e18f5333908702dd157f4520953990e98be3b0fbba857e46519d3c8710baca62bf5cba74dd84ffb68bbd7ef4eeb9

  • SSDEEP

    196608:HJ2UUd2gIV+DrpZceNBJPOmstR7Sm5Fi3Rudy6cGo3eAYdXzZ3F:HJgd2gy5eNBJPONu6mQXzZ1

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.

Processes

  • ir.iut.torshy
    1⤵
      PID:4472

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/ir.iut.torshy/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/e173d2a6-8a8c-4e46-a2dc-0ab1d9c2016a.jobs

      Filesize

      179B

      MD5

      ac58f99a1b179d71e8621412ad31c6a1

      SHA1

      b51fdad95876f5615735c2ab411031ff67d5e946

      SHA256

      9537553772c29c4303e606e458fd9598c14f1eee3cadfb446e241638bee3ccdb

      SHA512

      faf45d5eb4b890216e6ad33825ffc02cbc57914628e625164f9cbdacd5962ce8ca8f473ded2f56eb4d4006fc7cafa9cff8c9f76655f17f83f38d3e89b8d7e67b

    • /data/user/0/ir.iut.torshy/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/e98b6c33-85ef-44df-bb11-6bd37a32337f.jobs

      Filesize

      176B

      MD5

      f56f328eea1d5c96a1b96dbbf59488df

      SHA1

      440c784cacff61932e2f61580b7cfdc3a4943c95

      SHA256

      90949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918

      SHA512

      36e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb

    • /data/user/0/ir.iut.torshy/databases/__pushe_base_lib_db

      Filesize

      24KB

      MD5

      2cdf77d5c14dd3f313b60c691579a0b9

      SHA1

      6a74a7a3170cabead82152871c90749afdd6f310

      SHA256

      55ba022e5aa9eb87c256026289112e4c0531a41d0d56380fcf845de71ff99ca0

      SHA512

      eaf21f0acf8b98ac8bf4bce81e66a07d6a501483b141bfb7a2ef476a8dc9927ccd39971f4e0d1f7969576dbf7abb7befb3bec04e40c5a9b28fa7a2f15ae7a98c

    • /data/user/0/ir.iut.torshy/databases/__pushe_base_lib_db-journal

      Filesize

      512B

      MD5

      1e8a7f55abd8f86235a1b3c939b004d8

      SHA1

      b96309a1ef1b2b32ad28e3673cfb9be6f95e7109

      SHA256

      3fc9e4969981b6499e495c27644d556cd3460f2bcef4b2993ac44a155d0d7d94

      SHA512

      a68f758528052f4b3aabd6ba5598fd0550f2d93fd96f685e00e8e47d0f06d204f54b5b8374378b56214d2a306eb314e591c2780cce028e1d8fd5b3530bf08ee7

    • /data/user/0/ir.iut.torshy/databases/__pushe_base_lib_db-journal

      Filesize

      8KB

      MD5

      8dc84f0e0164f9ed7fb80864f039e958

      SHA1

      de774f16b06918202f12ae032c66b558d5b2dfca

      SHA256

      dac82af8511e03ba1fe2831003249828a1f8139faf39eec00b4d3ebd7c5763e3

      SHA512

      2a5cb99053bc38579e76479bbd0b36851c44e3cf8a8f573b82dab5f6a2f1960111fedb6d814402f61341c299db84ea471d6ecaa0bb2ff3526999f208f66a6c40

    • /data/user/0/ir.iut.torshy/databases/__pushe_base_lib_db-journal

      Filesize

      8KB

      MD5

      57e05d8f7a943ef28cdc30c334704b6f

      SHA1

      1cca40714c09223ff72baf0dc4cb06194ad46657

      SHA256

      1e6272e42e54b2b99a3271dea14606308bbef55ec167593804e98ae4459a2275

      SHA512

      46951621ee0146ec065723d9b042a4897da7b8d6b0f7f7d30cebbdb462adfac303cc9e233d87ab5e11990a3d2a755940c4a9b38de281d24e776796cd84001c85

    • /data/user/0/ir.iut.torshy/databases/cheshdb

      Filesize

      24KB

      MD5

      1c7a5debfe81d48a98de2c1a2a6a5b48

      SHA1

      a865634959a6551d55077d4c756e1aee4578d2ec

      SHA256

      407c24bc3328ac9108c9c6bc8cba531dea18c28cbe1ed5d599b74417fd743e92

      SHA512

      cae09fe559fdc6bdf723507a90f96806caea0992b45b5b5063d191e83e2588eec2ffa55563e1c93f3c36a4c9c0f6848f20644b5c1a1b13ff500825ecd42fe0ac

    • /data/user/0/ir.iut.torshy/databases/cheshdb-journal

      Filesize

      512B

      MD5

      6f6403a0199ad711f6604aff701ddc9e

      SHA1

      547e998759a445570efcefd65a33933f8515b31e

      SHA256

      51e8dc59d637800164c5a32b0e55b7687e386a15b6a8c461792daf5ae6ef57f7

      SHA512

      54c90786b5caf9765a59612177840fc325c9f09c08a30e1f3425974d6ebdea514af3478d6f950906d52b6d31548456d93d2048b2e94f002de7ffbe143faa6ad3

    • /data/user/0/ir.iut.torshy/databases/cheshdb-journal

      Filesize

      8KB

      MD5

      baca78535fca648a2f990c502a772255

      SHA1

      b5758b9b60200870f0faa15de9f3ceed2dce5323

      SHA256

      90170ca17819a962a9f127c86bf92a9c305ecb0773630e75cb9aa6a41258ec27

      SHA512

      144e2d48393562433b525e6916db40922581d85858182ffb15f3fecec76bc5be14de695151753a34e8bebe9a9873a9b65e234d8ce4297f64c343c992c8571666

    • /data/user/0/ir.iut.torshy/databases/cheshdb-journal

      Filesize

      8KB

      MD5

      43d8cab8ca5979ee7c907c195e353fad

      SHA1

      50aa77169eeb8853039847bd52e3664f0f548b28

      SHA256

      d981f7eaa4880f466c90a367e292dfef9ac0fab52d109f81d489a76a1c54338f

      SHA512

      7b9264790d1b04c730915c8103a9a703f88ff6b33782238d81da5449fc8514778bb816085834e870625995e5776ec354d29c8b8585cc22dae6ff66fd3cd9f028

    • /data/user/0/ir.iut.torshy/databases/db_default_job_manager

      Filesize

      28KB

      MD5

      dcd0cbb7b8606932666404ff1c99f2ff

      SHA1

      ccc841a034214c2d182a23b870ada247280bd198

      SHA256

      34f1038bbe6fa4a8a9881c0898275ec4fcf41fa591d9b442ac1c04e7855afcab

      SHA512

      524b8798be5e4e9d7566fe4ac43bcb584409090f3b53345fa32c1e187dd7487cd13a710ac1c3c8fdf28cdc4367a050ad506355a5053c1d8346263b64018e7edf

    • /data/user/0/ir.iut.torshy/databases/db_default_job_manager-journal

      Filesize

      12KB

      MD5

      a0473b7bb53d9ede40c44cfea5b5c3fc

      SHA1

      fffecd8af414b3a6dcd5131b1e2616aa721389c0

      SHA256

      9e8a0d715150fb2e35c6f95f81f2e4a2d5b12f33c4c44e66e39d22b5287ca257

      SHA512

      48b11b9b6a9d9364770963c3c09a6d50ebbf94ee6a34a0137f504fe69ed85fcd029b9c83793542c5b4eb0e4c80dfc608f7f18f48222bda0f209347640735c2e3

    • /data/user/0/ir.iut.torshy/databases/db_default_job_manager-journal

      Filesize

      20KB

      MD5

      2f0f5774287657118dc72f072193d16f

      SHA1

      a33f33ad252e77a42708d950569ea650760059e3

      SHA256

      f07594c13b2c8cf6ceb92748291b06b13ebb87af58d9dd1d6c7aff17f78ccfbc

      SHA512

      3c1e383c4d08d9e67a2f97c946b093caedac0b03c646bf0bbe2d116dea45f597b0a7572b7b1edcd3d24423551f03880b8a114985eb848b8c51c73ce9f1990bae

    • /data/user/0/ir.iut.torshy/databases/db_default_job_manager-journal

      Filesize

      512B

      MD5

      93b7afc0dad2fc968495e7394f4e7727

      SHA1

      7928ef32ac061d53f07c39f5feb48f3019520982

      SHA256

      6ba8910788959d489689115980d052766ba97af9c62e7bd4950a547161985f76

      SHA512

      38174891eb98968614e63f3d239805ec2bbd9d17b24954f8103b5e29604c112e0c9074796ae70f19f347bec258292f6e377dfb435edcb453b6d6598a52393126

    • /data/user/0/ir.iut.torshy/databases/db_default_job_manager-journal

      Filesize

      8KB

      MD5

      887bbfd1e84386b1ba1f57f9508ec3ab

      SHA1

      915617d51c3ce9eb91100284f48ea45ce6e60b00

      SHA256

      31989c81d27df181ab89d701ee18551c06b3da002fb65fb5f3a427e5b128d06f

      SHA512

      c298057c91c05884fc0e069f2290fbcb3779398548892f688fc2189fe3ee794bb8bc9fbcd38a45edc2be2d599588c22ee056c02619673a4e7c96c144e2a4a72e

    • /data/user/0/ir.iut.torshy/databases/db_default_job_manager-journal

      Filesize

      8KB

      MD5

      a3a6c9483b37a76d80e3bc5f39ee41ee

      SHA1

      839d5fa4ac317113f9a2d5f6087fd8d51b2bcd52

      SHA256

      25b93346295342f481d807a65b221c77d5fadc603422eeb1b1f613f975f6d6e6

      SHA512

      6b73116b826d0c442ba7cb9af06b4e65fcf73776fce0f59a1bc71a91dc765a05cf112e3bbc86154c549da90173a77d74ed4642ab5a031876559a90acad15be9e

    • /data/user/0/ir.iut.torshy/files/db.db

      Filesize

      220KB

      MD5

      63cf76d6c6ae618a4b7f83ef1a284018

      SHA1

      8a32fc86bcc398f41921cb0134002716df4b3389

      SHA256

      0c14b28860f3b40478105491dd07570f6ee7b6eec92c375fcc097d3678b465a5

      SHA512

      cb6fb75e7cd800f991ca1c1e3890e6d09a2af6906f3fb7d88949224dc99a3332ce91796def1dddb34405ca707a79552d92994ee89030de9ddca8e1858d5529bf