Analysis
-
max time kernel
2564659s -
max time network
164s -
platform
android_x64 -
resource
android-x64-20231215-en -
resource tags
androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system -
submitted
23-12-2023 17:34
Behavioral task
behavioral1
Sample
5936661db2df9d475550a26d2e834aa807760678b8ef148084ca0242c3cc526f.apk
Resource
android-x86-arm-20231215-en
Behavioral task
behavioral2
Sample
5936661db2df9d475550a26d2e834aa807760678b8ef148084ca0242c3cc526f.apk
Resource
android-x64-20231215-en
Behavioral task
behavioral3
Sample
5936661db2df9d475550a26d2e834aa807760678b8ef148084ca0242c3cc526f.apk
Resource
android-x64-arm64-20231215-en
General
-
Target
5936661db2df9d475550a26d2e834aa807760678b8ef148084ca0242c3cc526f.apk
-
Size
10.8MB
-
MD5
8c8354e6f3f2c595d5a5f1ad12c44bf8
-
SHA1
41bfc202d3e527f48c1b1138033cbbedde03e447
-
SHA256
5936661db2df9d475550a26d2e834aa807760678b8ef148084ca0242c3cc526f
-
SHA512
3f31f601df2c4bf0daf6cf57ca185d2ed67e88e33e6aca66deaefc5b7df7c1343f4380a8a0a5d1a314306e65e674ea91011c3d1c4798d6cf4d41d446adc4d0fe
-
SSDEEP
196608:UvpF5luTCzHYIibt4xVuz1FFoZCU3pAefVcfeUd2mdhiU1rrsOMgXjr:UvTPue7Ymsp3U3pAefVcf31dhtrsXU
Malware Config
Signatures
-
Requests cell location 2 IoCs
Uses Android APIs to to get current cell location.
description ioc Process Framework service call com.android.internal.telephony.ITelephony.getCellLocation ir.nahideh.amozeshjele Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo ir.nahideh.amozeshjele -
Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.
ioc pid Process /data/user/0/ir.nahideh.amozeshjele/cache/1582435991586.jar 5000 ir.nahideh.amozeshjele -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock ir.nahideh.amozeshjele -
Reads information about phone network operator.
-
Uses Crypto APIs (Might try to encrypt user data) 1 IoCs
description ioc Process Framework API call javax.crypto.Cipher.doFinal ir.nahideh.amozeshjele
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/ir.nahideh.amozeshjele/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/4e5f5891-4acb-46a5-9b10-3789ac1af79c.jobs
Filesize176B
MD5f56f328eea1d5c96a1b96dbbf59488df
SHA1440c784cacff61932e2f61580b7cfdc3a4943c95
SHA25690949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918
SHA51236e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb
-
/data/data/ir.nahideh.amozeshjele/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/a6e1846c-80c8-4d8f-b836-a2b21b49ef57.jobs
Filesize278B
MD51abcbe14812bc3aebf4f1b54d021e437
SHA1c56c352a3c26c53b9e6b5a04e51fd553d8e275c9
SHA256962996a677e6a1f84cb067631dbafd9b49537f87502dfa288855c5dc90299369
SHA512ffbbfddbae7775c103b0980141751782f602a7b590869f5b1ddf11653134dff1125ef4a2b8a2a9cb818a625541e190c6f481940584c1aae6d4aa6d1c5370c54e
-
/data/data/ir.nahideh.amozeshjele/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/c3ecc55e-f118-40d4-8508-afadd3cedaa0.jobs
Filesize179B
MD5ac58f99a1b179d71e8621412ad31c6a1
SHA1b51fdad95876f5615735c2ab411031ff67d5e946
SHA2569537553772c29c4303e606e458fd9598c14f1eee3cadfb446e241638bee3ccdb
SHA512faf45d5eb4b890216e6ad33825ffc02cbc57914628e625164f9cbdacd5962ce8ca8f473ded2f56eb4d4006fc7cafa9cff8c9f76655f17f83f38d3e89b8d7e67b
-
Filesize
9KB
MD5e8e0527a01aefdb89afd2c508f131da1
SHA1f1103e6b260c657ceb3d95f1b023af3fda8b133a
SHA256f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce
SHA512fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34
-
Filesize
4B
MD5098f6bcd4621d373cade4e832627b4f6
SHA1a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA2569f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff
-
Filesize
24KB
MD5abe9fa56c177c65db8c072e6d81fc41c
SHA1abe9e9bb6f7294324f549af4435f58578ae69f2f
SHA25653f09b897033e2496e13f3c6e8d14ec1d1f7b273c2b4d47dacc569594fef0f8a
SHA512bb1b70eb859448050dd71822652d1976456be07c098ab41f2f75fa277cde059aff0c45629564170ee07028b85d501cc941529ab06753e5be2e710692bfa3922a
-
Filesize
512B
MD51aa4363bae3396a00e717838437b0d08
SHA1b17c754faf4a3214de704cbdbb03ae01c94d7523
SHA256bed7909d6f01b067ae0432a2c5547584f658a88b1a6df46928b6a40dff2b9bcc
SHA5121ab12fe75e827e070a6315b1da4825f5d471d2c3cd0c9192eb041c765a47efc338d84c26b64d86478f48fe1a6205ea326687f3511fda17f3afbb71bba5e5c0e1
-
Filesize
8KB
MD5c33745cecbeea76c965d93657b945725
SHA178e569f836bf05b2ee50be3a571c54f6096a84e5
SHA2560336babfdfd1c6b938c03879fdaca1f3117552011a78813fc8bec20740f78196
SHA5128c2fd742d1b1b3b6a99de71cb877e3dde3b2f8c23dc6d8f798537d72a0ddd2825f6e61c404910e6024c5c75621c4e62fb47b5e0d73db6ee8ac5a02c9fa9984ed
-
Filesize
8KB
MD50195f244d25fe15fea5b86877eb992df
SHA1239517e0221547fbb346b547aa46c46fbf782482
SHA2565ad81794827a2565f5dd0699628cae9a917ef43e1cd4cbaaa1f9953488e4e560
SHA51244c719321ee687d0e4984b2eeac4a78132a2c9d53e7aeb8e5422c8a6aba53f971c65841fc03503de0b373ca35ed10626e5c05f533cd0369ae266e9d4ae945bb2
-
Filesize
8KB
MD597dd3599aa85e72c35f8dbef7c818e70
SHA10d4b192d2c03131bf90c19bb822a87646d8d89e7
SHA2566df99bc92e9c2817d5e72e00da26ca73b6d662156d94dd1e405ce9733849d18f
SHA512e041ba02de7a208b2f33d2e5479f50cbba45cfb96118a8d07c909fa39f107f6e5619f900ccf5201c14d17966f6f8bb6ddc1bcac3d1bdafa6203f2f6c7d0be7aa
-
Filesize
8KB
MD55327ceb786ecb8c244249ea7a6577f98
SHA155b6b86693942ce6ea6537f7757ad732b1db0c8c
SHA256ce177743e40b937cddca8b406f51425d388aee98f0344543262b065ad963d2c7
SHA51246d901c9d88eb590bf5737513e4862bf1d727ddc07ac8a9917e4f8089a0cd0a2914fba5eee80f53b10cb51ea28e3aea6fa53ed193d4b61c2e681a3265416ea1d
-
Filesize
8KB
MD5410db475255f54c20e70f8f742896eee
SHA1c500618b9fa8498be4421e5e74637b2014cbb943
SHA25649eeac850a4b4cf9714f5027729e5499832d168db62b43bab068dc68f2d34b4c
SHA51225470eaed75e3f7b4e394c4858ed8db09634baf92ad9ea131c25bb1182a94dcaa9cb5a0ff04472b01c7eee379ebedbf168339fd643d4552b5f48f1623fb17fe6
-
Filesize
12KB
MD5ea628e04765adaf4238a5dcdff4bbd51
SHA1a801947619ea8c368efe9c006a324dc6339ac60b
SHA256885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4
SHA512c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe
-
Filesize
20KB
MD5d15d4111024202b130ac744cccc64e7a
SHA133ff282b383c5e43b8c8723882f1ac596886b7f3
SHA25606cc59a5e9d7509283adc73d8efd6697c84896db815a50d945a89de96aaa1517
SHA512a33a544a68b8c07bcfcab110af6d714a0fa5d77b1823077e17200ef5e42b6c8a2e0211a3ee367aa5ad1ffe2c8d12f62a6e93d88c52014b4cd861b080f3ea77fd
-
Filesize
512B
MD5206d3749338c5460ebe60b3f90f713a0
SHA1ce507fb65b24d1d5535bc0150728c83aca42285d
SHA256c43f3e9394badc1f513b80e174f0df28064e4680aae46ccf8b05442142009de6
SHA5124ea6e859c18d18565be5e369f368eb99702d733902e518824e8dd16bac2f1ae4c8b69948d0fdae2afd1e269200cce9d4f46939ecafc652a192ac3305b906bba2
-
Filesize
8KB
MD51de39032e4461149b511137cee4781d5
SHA106be034bbb73516d11872a219bc671a788825c44
SHA25699763a5c785fe452445c68ab3b664dc4ec806e8fec11b76beec484e22de15954
SHA5120d7503b2be8ccf965580c03c8f881718505de4d8fd137b60cec27c0bb193cd239d64d5b0b5c9c99b747d59baca713b0f774446ba698ac9f4fc52c8358d3a04b6
-
Filesize
8KB
MD51d2d13351f05b70e6afedca4ce39c007
SHA15999f654be13e9630ba23ab06f2d31e6b6c0eceb
SHA2564d85f1e759829bbee6c04680d2bbc5b31ec45b6e97148d1292cfac0cc859de6d
SHA512ddf6dcf1cf11eaf2bd4c65b12163c8497bde06ad190d5ff498500651f128adc7d3b76635117fec699586bf00e311d261a851f1f051e0ac7f2437b0a4632d74a2
-
Filesize
12KB
MD5bec1aca982e3e62285e54a3e40f537aa
SHA1e5d82ad136908aeddae906b65b844f6557efa903
SHA25614964cf8b8cce377394693c21a008c31d1e1ae51081a8632c57008cf39a47b08
SHA5126133dc3abb9a26f5251062bd8b5c32412a07797456c5b89d7bee4021f85550dee67ffcea91d1884cd234a2d2f037bbe53a97f72b253d9d56499c6ecc3dca15a0
-
Filesize
28KB
MD526c4d70f46e316596ccf722f691cec21
SHA1e4563ff8b7675fe6cf25461528461ceafd817ea9
SHA2562255e323d7465a95f3a52ce108ed5ce9e70d4a5e01af6aa4a4f3e2f671bf5b44
SHA512997877eb1f80c14666095e184766241c8e913561f3349f54a99993e353052d6eb8827f63d2df78fd7ed9d0fadb619dbaaa006b1369f7c07756040cf02490debc
-
Filesize
20KB
MD5871d4ef8fe472696589037a08ec4cfbe
SHA1323e27166518821716b903e050b11659c5542648
SHA25663b129ec7d7662cc08f4fe7cd540e435a7287b04c61fe7a3aae54e624477d9a3
SHA5122c807b9a30cb0cc6852c9a0bbc4a2955dcbf9276e20faffbe41d4284d509822c36d49f898f0955ace46c4af868cfa4daab537db28d88accbb586df753a130d3c
-
Filesize
512B
MD5cfa758271083f7143e057c76fe1d9a53
SHA1c20efb3fc9a9a0bdcd0a619d5d68a0a4ae04340f
SHA2564b0c924c6e6d074faa8950ea85af12a8466613d1b4c9e7d29ed488223f598ff7
SHA512d6b57e573e28efdc46f6316758ca6e4a2257ccab595441706c4bc1f5d1df6ddbfa1d2b970f3ca97111e000e7dd6fcc0c2e757f8d8a514f25e0acc3b686507525
-
Filesize
8KB
MD51c60f8d47a7803676501b1155da80525
SHA1fa7f2b1fc2de15f7a026685fed4a363af0b35d0c
SHA256999256c49801363fc20b46ee4b51da8215f6e455f432a1647ad966197e0c0e86
SHA512b4bfd4ee39e753817aa6a86a8785f4335253b8a115ba4f2c4c69889a85bca3c3f9e9dc038f03afcc6b982cb4487740c325bdc821107b0efdcc05e6891e767fd2
-
Filesize
8KB
MD54d4fabb2541f701d64966442be0a5dc9
SHA1e56105ef02b97b852d039d1e01ea419be2e23d66
SHA256c3e0d019202b46a27201e329b31d21ba4453a475ac2a9e19b1578cf86c6a10fd
SHA512da986d346dcdb2c942dce359c782323db79d6cc48de094c9446f51a66b0db9847cc6b97b357a9a0d099a5d064ab0697de1942758ecb3de35d30a31951ee6287e
-
Filesize
12KB
MD58bbd537a594954dd845e60a76b8979ff
SHA1ff1eb766f54c8df71dbb577bf3201a308f1ff6e3
SHA256653456112a504eba3d292021e74b5f21fdf0f1b8e98d507d978c915e6bf9e773
SHA512580c0fe50169558688f293ecc22f391b339c23a6d53f2c6147b30ee8ba9d05d6f5f3734fecb25ba70b5967ed16138baa14d2b45d57535d42e2eb9986e787468c
-
Filesize
16KB
MD512627a2ec645c4a4bc50dba5903afd59
SHA1504005c938517e61bcf68b65a055c2faba635c2e
SHA256f177ffae9650eb4f407c2d9a510bb5a5abe1ece2fdfe24effc62478a1bfa5903
SHA5127ff69589296e02383a217373399e75d8a82fa17146e4273f4c0eb630f096dd9f394a3324d60858b02f7e5cf177c82c6d966f5cbedb68ae6a98df7cc851b79cfd
-
Filesize
512B
MD5514344efbd5defab89405ef887726efd
SHA111e876fab9b1672d1885e5943445e058ad0628ea
SHA2568dbf8bbd5fc24e32b4f0efa45f97ca9f4c2bdae78649189e2722af5568b29513
SHA51242402fedae87134874d89ef1d763993f6bf9f6665235009a889944865d8bc34d3acb741f2076b81874af3039d765a63d0d426146c3d6a1689f4dd50ee84bd642
-
Filesize
8KB
MD5282232259e66dc5cb8f29d1f69e5708e
SHA172ecf6efb86d22966adfbbaa3accc294ef331676
SHA2563551c5e79f6a88c951448922bf155a18f14e9096aa40ed3359d83a6c03e7d7fe
SHA51279cf85f3c931887683a0559bcaacbcf6a2f2da84bf50b6c95bb61619616cdc3597b206990176e76f7c93c7f7d0f3fa52dea0efb3d7fd4cee6861acd1a5014a42
-
Filesize
8KB
MD5cb805351666dec6d7ff5c39905fcd545
SHA1a4e84b5f5ae4355d8c55645a41f3a753d948d601
SHA256b3334ad53bb3faf41019e9f4e11b94059cfec98eacd76bb25220b5509ca844a3
SHA5124e4364efb2bbb781f4aecca7850b51c7c26468e399677c214151956b399bc4729925e5c22d944996393faee42012436a3c8fc1e1c5192e412d4639e232b55ef5
-
Filesize
8KB
MD55ffc250f74204f415ac7f1f1e98edee6
SHA1eed1ecf0a3454078efdcaf1e245f51fe050b1a7f
SHA25649d4abd46bec87ed16f26bc08c4bdc2f10a44ddd5a94c60bcf980e24a6975a37
SHA5129dd2df5c95724e3eb1a996f4c2f7724dd711e5c1a180185c7a324a0a83a37a8fd96c849cb8deea6aef15cf7c4490ebc6a2cbc3693822c771df7e82d6a01cf442
-
Filesize
8KB
MD5ae93d166ded7474404ce1bd39122c2f3
SHA1e311a0a00ad3d174c1c5fb71ade8926f6d094297
SHA256b2d8ee38fb32626aad9ffe74001ac4a3d5443d72a733b94ffadcae4c1c2b08ff
SHA512138ff990090dc5f2884516f8f5717d71b7f9f5aac9d612f34d87bf44385c4503babe6ed39f45966189f50e199926ea2e42cd035539c80370af956d832bf7fe3f
-
Filesize
8KB
MD5c998a154f0ba8c99d77f986dbbfef703
SHA18198a8b48ed75d1c21ab6fcf6b11ed26897c9963
SHA256695ecc8a8af03d0bd34a2ba5f6130885ac109d511d2ccb1967400c9032367935
SHA51234a056284db3bbaeb30c1ff9cfc9303df665622b06f07708cb7293af96b5ddc652e40af044e56fadf5ba995c0ee8101da9eb186449a90476c764993af38a5841
-
Filesize
16KB
MD57c99aa99957bb721dd78508165c47efd
SHA12c32654cf02f138dc3e0e6f81f26a4e0eb98432c
SHA256ce18bb671c3b9bc21867268a4b3eeebe2b7fa01c9d519a480134150211bc3caa
SHA51266e4e14c7aed8ea61238ef2114d6f32a0d8e9a1ba897ff596f2c6a70ce14ede94ee251bda34e4f4971ffdcb5d18892ecf3b64680100ad03a4a5dd12b63c0a8c7
-
Filesize
16KB
MD54de1500e4b90ec71763c7488941ff9c6
SHA1b90eff96287b0e6403b453a076456f12885d0e85
SHA25639441eb46a76510eaaf125355980fa9249fc19809acbb102727a4afcf8049e3b
SHA51252a4c9e77a4e0e2e69de1f3ea767d93f702eac66bd086b988f2a77d50c6dd01d24ec02fc10038897b186be8a06b257a7b8872bccb7df06de4ac2879ce92c02f8
-
Filesize
16KB
MD50d08db3f20fcde9ac5662b0478e77339
SHA13767085c77913d1b22fcee8b7b86c04223a47265
SHA256c8f08b300eda110210aee7cf631b9fd7f5f2f46a2312c55e7a264241962619ea
SHA5121f15de5a070b4404a4d087484fe4d50ee7deabc54ad03295ce12767fe1f40bde0bcd51e48e0702dd39a93806901f0bd3dd89442a4124cdf2a51b2651fb91c477
-
Filesize
16KB
MD516d25bafaad6d158417c16a475df3342
SHA119f5f3ca61d8e6187df7e380d2101d29617b6096
SHA256fdf55fb5d0d0c487f44f35136c21584ba466445659653dccbf647d68b789d051
SHA512f197c7ab1d5fbe0baa123a69dc07daa3b1f5e083993745fa190547601ef4109853f6476efc9ce00cb6d5ee60f1a204157be5081cd312b93caef3dc97574fbadd
-
Filesize
512B
MD5d25c94eea69ee22bd7a21657d535d871
SHA1efaf68083d7d2310a6d155c7a34d8757d59c98e2
SHA25643764fae2de76d361f4048bdf9c77aae68f4d693b92e2870ac8e59c344865c11
SHA512a97c03e9c144798a25674aba0e7090104942d6dc0e0ff9bb0e20d66d35e629b8db86f1ea7c18f17fab4d0b417b2041e69903f6dfbb3e1091fc391675322300a5
-
Filesize
8KB
MD5a7b36ad08478a3269cf91ac7fc3778bd
SHA15054162466aff6ce56462096a5773e230e46d415
SHA2565f7a63409cc9e9069fb51b74c0551b8a074408f59ef6ca175f0cb19901625c37
SHA512ad3bcad96911da73f9a9a810c4d154e7aee99b61d455242dc56c024200363dea9854c15c82427c34667c5da8a32a2c499a72ba1d0a8744c43949cfd72b3392f8
-
Filesize
512B
MD596a601559a45074868e92bf386ee1dfb
SHA104e15fd9e01ea54972fb3a5de208e58f980f308c
SHA256c52f6dca927296deef7054e855f7fd886b457cb84c715d6b0de4555583b04649
SHA5128ef0529e5fc4cdd8601528049b499a42d3e999fdd19b8cd727c54b944fe3699c6b5de13825ae670de6ae7be12a34b3453894f5e25c8848b392e94f9b98d96a70
-
Filesize
11.0MB
MD5754f469bd97296baeab3a599f3929c5e
SHA101e717d061ef833a3b8a97699e24495316278d85
SHA256a7a2c41be2137bc2f323eede89c890f0e1bcee9a7cb0fe89461e6a7d4d35eb13
SHA51218f448c6b862ba672ef5dc732c1ba77d273f1f27949dd0069694639985159af07ce0304628db3a83b7010927bc74539fca811df3894ec8ff7d1f4e6106a3f3d9
-
Filesize
2KB
MD5321760db164fbc5d327940fb5d01be08
SHA149ca1a1727d42cd37164b8c733ae3bef71021c34
SHA256c18128f709140a4c4b0607f7ffc4ca949b620c781b0001eba82f72fd057dd638
SHA512a3a1a927c7a1e5418482cbf3b9746e1ecbfd8983fc9728f8fd167cc7bfecc2564af49845f25f819a2cace9559585b37f18b0122f294b44e5bcb43186d5eb9ddf
-
Filesize
20KB
MD5fde2ee00cbd121cfab5290b078aa3ceb
SHA1e2b77d5320e155e413d040a8c20020962065b2f8
SHA2562897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685
SHA512a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56