Analysis

  • max time kernel
    2573107s
  • max time network
    136s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    23-12-2023 17:15

General

  • Target

    54d7923d73a811b91a7bd2b5b80eec837a551da37d4052224b1c6c768a658f35.apk

  • Size

    6.2MB

  • MD5

    c1e577dff16d8dada13f11aab06fac70

  • SHA1

    e22b10286b71f220c9e257c6d11e2065fb1b1c78

  • SHA256

    54d7923d73a811b91a7bd2b5b80eec837a551da37d4052224b1c6c768a658f35

  • SHA512

    e0208bc3e1e902cb82cfbb0ca8360528ba44ebfee8fdce40ccf1bcee44d65f035cc2a4488a6bb2e18140734a44bc20fb30b4e1fdd7275f3fe2398ccde8d315e6

  • SSDEEP

    98304:mB/1+IJ0T0c+7l1ltVMBo6l6CstLZyRkIQiPtTargWfu9b:2d+IJA0cGlztyO6ECeyRkPKargWfuZ

Score
8/10

Malware Config

Signatures

  • Requests cell location 2 IoCs

    Uses Android APIs to to get current cell information.

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.

Processes

  • honare.araei
    1⤵
    • Requests cell location
    • Acquires the wake lock
    PID:4590

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/honare.araei/databases/__pushe_base_lib_db

    Filesize

    24KB

    MD5

    c058a59352faed1f951e8f7d033f5eef

    SHA1

    17fc71b7d0702b9bd6ed2e7b56918bd80ab60f24

    SHA256

    f2eaeb62d3884bdd5843248a8da585dd89c93bb80fa8696aa1c60d68d6a8fe35

    SHA512

    6489f1d2626926bd03b85ca87e4181909f552c821e3f338d304b3a6160ad1bba5db67db61f404ced645c322f66408344db1dd72ee7711e619d6c031f52c62f7e

  • /data/user/0/honare.araei/databases/__pushe_base_lib_db-journal

    Filesize

    8KB

    MD5

    cac795b8adb1de6109fa6504db38863e

    SHA1

    6ab079ee774424653d3f35d05545301f115200cc

    SHA256

    522b3f2209b79f6892b068177d04ea32026dcecbdfdfa5578b8f7540518cc69c

    SHA512

    f978ef09de7442cdea0b7491de507fcb9cd6c11129e95b2f5234e133ee0811ba1736dd6b6b45a159f125e979ed7f4a2ff10fdaad7d0581254807984660db1d27

  • /data/user/0/honare.araei/databases/__pushe_base_lib_db-journal

    Filesize

    8KB

    MD5

    7ad6689e003a8fc015a874f39f1a903c

    SHA1

    7e621d7679f1b647331a5f304ecb2720979269e9

    SHA256

    240ed161ca88df7204153d32e52856ffd70024b9f8ea314793769c3e40fbef99

    SHA512

    ae3c381393048cd2f712427613617fe9ecba2f2ff2758ed26b6b75b9097eb7b237a90f4424c7bb9e68a3923bcf85fb9dc0b1c3b3082ab3c4a2422220ad1cbee4

  • /data/user/0/honare.araei/databases/__pushe_base_lib_db-journal

    Filesize

    8KB

    MD5

    e0395614953e27b1e52b1354a89d2143

    SHA1

    18a09b343b079ef267a3542aeb30b84f504a253b

    SHA256

    1567fbe3e0d6a408584203a5ead6abcaa56891c578bb4f598e6e53bcbe0e41e3

    SHA512

    5ec68550b62812d9f6e06667bf337c187c18d56fe23ff04eea424e6dec052a1c3da8ae4654cec0a05cb43036f3b932b4229019c87873b6cdfef47f5653309c12

  • /data/user/0/honare.araei/databases/__pushe_base_lib_db-journal

    Filesize

    8KB

    MD5

    ac6357571204b5f8109782b2aef96453

    SHA1

    212445242f670d0e7230bd69af0ff324c05ee644

    SHA256

    5be6cb6f7a827dd16b84c5544b572dbad73fb8445e44f9347a537085ea4e2eef

    SHA512

    709eff8add5e8145b1fcb863ed17aa36fb618d88ee1d3fc64601674e880d5d7199111633dcdd20482aa191cb846be44745aadb716a557af3ec435a62727f52e8

  • /data/user/0/honare.araei/databases/__pushe_base_lib_db-journal

    Filesize

    8KB

    MD5

    44ec3c0bd2bf9f1075d12b18fc250cd4

    SHA1

    c76000d6a1c1a4666f362a2e7f0ea4952014b442

    SHA256

    0e9c321a7e35334c03f2d184c379c6206a45ffc2b56fa8bce871a3ffc0c747fd

    SHA512

    fff9fee388e88065b625e7d8eecf50d715ce2f99aa2aa34b7b1dc6b3cfc49fc76e15ee0dcc97f487a023480b632f72074f4721a31db479a73d017090278a3029

  • /data/user/0/honare.araei/databases/__pushe_base_lib_db-journal

    Filesize

    512B

    MD5

    113107fea2fe3739dde74571e752e861

    SHA1

    e6c4cd7dcfeb7dcfb2e8f1e7880af99bdb165dc1

    SHA256

    add5546a21a3b55d8881b6724a654178ab9a23df849356e6532c512a06fe3a08

    SHA512

    e35d7bd41485b0345dc913c053f181dc8a171545ae32463560a5fe0c9f1ff4901ae4c39abe9fb86e58a692e233f1fd0783ebdf747b371ea658241ed407006eed

  • /data/user/0/honare.araei/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    9ce06e7fadafaff310a2822c71a4154b

    SHA1

    bd3e041f857ff3cf3b3de3d6e69212b342b58da5

    SHA256

    8ae38b9475b3d0a8a3924566c58908fe15f300be70d2d339fe758a7abdab2c5c

    SHA512

    decc0384ba4011fde4a7606df020dad6c4b2b31139099173c453824a76d0f05b41067b1ceec8eccc167e34f489a0561cf5d0694907accf6c48315509a0081204

  • /data/user/0/honare.araei/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    4b49e5b55d3827174284371a84f39d4d

    SHA1

    ff64c983d3c99caff1a0aef9c3bc800e2d13e4a2

    SHA256

    a95ced35798f01a9e86e8325644d1130ead4ccb110a4e6c5576b659ad277dfdc

    SHA512

    22f1248d02a5a5c4f73534e8f37affefe902ae9af315f7af7d8fef462d7f14b673d93711bf2317623cf0f6a4d56e3d4f4b3ef37631e516c6a4f04b0079fd05cf

  • /data/user/0/honare.araei/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    7534fcc4d82411e7c3b8a73afa48f80f

    SHA1

    7f72fdaa7ee98a9aa63ee76c409694b7792e71ed

    SHA256

    4d9a78172ef8d730154ab5a366244ecfc3e734ed526d744b2c7d3d98edf79d82

    SHA512

    cb431205bf56c8d9229d37f789e34feb3363ec2ae1bc598746726e613cf5c25ba125ea97cc2ad0d338ff5aaf55887dfb905038e1de9e6844a14f944c98b76fb2

  • /data/user/0/honare.araei/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    47080e3bfcf2db9b8620f2faf6c5857a

    SHA1

    6f63c1851255e0fa99567f047382074b086d38bc

    SHA256

    dc4f8a73f49d2a6b41ff425fd08b85c1eba5280c438a1a1ff9832e91dfa56cbb

    SHA512

    e757043d82798926a5ddd716457accf6616894ad1ad79ec832293a1f662910b663239f899bf05a5c8d90fed5bcb093c5529e5bc842fe9003c1d5902f9ed84473

  • /data/user/0/honare.araei/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    0298e69f0de407604dedee55181f22df

    SHA1

    f53fc9926c8032f461110c9fbf90c62625603322

    SHA256

    da284f3fa722cf2611a81db98e5755351a6b72396a85bf6ee0dc7875933ae398

    SHA512

    a2de0376faa99caec4b8484ffbc6918f831ba06808cb944407f69112e3713aba5e7259f696b2f6dd2dfe23961d874667a7134acebcb9d100834326dc4d1014e2

  • /data/user/0/honare.araei/databases/evernote_jobs.db

    Filesize

    16KB

    MD5

    cc677a6dfc2c4ad1baaa2827ead8b745

    SHA1

    d13df636ee3c18785eb5018d614d892617497dbf

    SHA256

    5a1547ddab92539d0ea9ebe614c0b65e3d72d0c0fe3655b77e0b563a24d1a42a

    SHA512

    6a60b802bc5fa9493ae81311ec93dc1cc41b37486cf976a8e04326c170668383aa1ad3c2b342645cc3b575de88a1436559fe34dbb01a554112d6ecbdbf0ca13e

  • /data/user/0/honare.araei/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    7383fdb08f17221e93df02288304e221

    SHA1

    557e7314018d37d61ee46cf96e48b0c584603ac1

    SHA256

    56977b3b701acdc088cc75c15ca19707516839250b36a24163daf2ae1a91cee8

    SHA512

    b061991354482bac6c605edea884d38691cde9a981d0a7ba1dd562bcb0a28a14a187b8efbeddc3a06c61449e5e85c4ccc050b1e5ddbc9de65241d84c48e189f2

  • /data/user/0/honare.araei/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    ec2a1ffedc8a8724fb7cf66026a4e362

    SHA1

    537b314eb6111c70cc2ac86834888c0a486c7936

    SHA256

    cca6fb8e2d2c0c6049d79b820bcd6526028613301a55f08a8f67b48a4b8afedd

    SHA512

    96bfaf54ec019d2f4b6a91ccc9aa46dd07070ba7ede2e8a43c1711e4301ab4722c1561da4011f1bbf0c058a273ab1461ff4f6b1bb19bfb5743cd18ae2f7cf0f4

  • /data/user/0/honare.araei/databases/evernote_jobs.db-journal

    Filesize

    512B

    MD5

    6170ea6deadf66ebadec5d4ef2190e8c

    SHA1

    4092537efa29e0ac7aa982365e6597f099398248

    SHA256

    97d7d2363135e742483003d2f5a990f5db5e989ebdca816a4a1bc2b52b24f56e

    SHA512

    2b1bb89917b11e91c16f3fe6b88fba2a628a256d329da40e7dc356dacedbf3eefa33294f1617800a46c3063dddf27db3dda5435250ca09be5c1c2f60bddb6449

  • /data/user/0/honare.araei/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    fce039fae32ae3472673bbba6b2a939e

    SHA1

    5c22105adf755c20cd18059923c1febe103d1500

    SHA256

    aa3bb7cbbcf2c301902e528823cabc2ca92cd576b579d7224ec8f682c1c8ecfa

    SHA512

    d8be2f233a7b8aa02799792c35b53a5c8bd6ef9d04234fa0c115d51c9c78298bc3a09b3aa0ecbf0b4c6516421ada3627f26bc0a370a224718f4784e4e90c2159

  • /data/user/0/honare.araei/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    db20c46bb8bf707fd5be048284dc5c35

    SHA1

    dbb52154cc61606e98e9562f1b3ea3c6db1e8e20

    SHA256

    67921194f38567a6de6cc52c8d3e15eb767012cee0e824d6834e6e823a3a7c12

    SHA512

    7c144bb47728efe4dcbf11ae45c56e9d683f52e31b4b9c91ef82a9c0304538b744a5b12d1bb63658dd4d00f1dd48a5d95f6de24caa05d15908821b1383e0a2e5

  • /data/user/0/honare.araei/databases/evernote_jobs.db-journal

    Filesize

    8KB

    MD5

    80e8c7852d0877a2c7e88d8bdd3cd50c

    SHA1

    4035a6e5a173532ad0c630249b94efd5be3a2db9

    SHA256

    d3e3c4c3b441a19637cec2765e3c7161c4caf7b1108e213d40b3e7668dccbb59

    SHA512

    ff95e809d36495b0f38240be386704485ba9500878c617e9c77a2aea79839045a8176e53632d3a74539eee83269d899e28d443f1bebe22ba5f12cc36fe472802

  • /data/user/0/honare.araei/files/fav.txt

    Filesize

    3B

    MD5

    a5ea0ad9260b1550a14cc58d2c39b03d

    SHA1

    f0aedf295071ed34ab8c6a7692223d22b6a19841

    SHA256

    f1b2f662800122bed0ff255693df89c4487fbdcf453d3524a42d4ec20c3d9c04

    SHA512

    7c735c613ece191801114785c1ee26a0485cbf1e8ee2c3b85ba1ad290ef75eec9fede5e1a5dc26d504701f3542e6b6457818f4c1d62448d0db40d5f35c357d74

  • /data/user/0/honare.araei/files/seting.db

    Filesize

    4KB

    MD5

    ec3e26c859373af93bfb35ad7124deaf

    SHA1

    f3deec3fa82bd72054091e9e07c2ee96e63a32e3

    SHA256

    a7cb5508bed65398db8d7119cae233f0815888f021ec13042363ae6670bb5efc

    SHA512

    64e4642c341dc07896023d964db9ef03ca7491a8ece764edba48d81b2471c01dfbd104fb577d822662da5062dba68f5d90524d459ca563dbd8b170a23a2adffb

  • /data/user/0/honare.araei/files/unsent_requests

    Filesize

    58B

    MD5

    0d210bfb2a0e1f1b4c082a6a0f79de07

    SHA1

    bb8ed9e364db79d1d9f2fcde3f15091893222faa

    SHA256

    988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

    SHA512

    536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1