6a578d9f7793412cb9155e811f8c913c2f6ea805a5d2e50362dc884097f4e849

Analysis

max time kernel
2592799s
max time network
138s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
23/12/2023, 18:37

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6a578d9f7793412cb9155e811f8c913c2f6ea805a5d2e50362dc884097f4e849.apk
Size

3.4MB
MD5

6e7e12cdcaf2188697cee24e3878b936
SHA1

00f49638f0cb8ca1bbd80508130f9c6a3d1d2670
SHA256

6a578d9f7793412cb9155e811f8c913c2f6ea805a5d2e50362dc884097f4e849
SHA512

2e66ed715817244723e9f343d3e3fb3905a67edd203466c6669816cfc3e9d07004ed2fcb985d2036300049a1c1868047f1e5b66c7bb6199e7548920420f187b7
SSDEEP

98304:X06BY3h/E8NdnpMbFXYkFpYy2ZVXeh6zM+pss3mFOF:/YNEupMbedTZoh6hz

Score

8^/10

Malware Config

Signatures

Requests cell location 2 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	ir.dena.iran2018.daryaei
Framework service call	com.android.internal.telephony.ITelephony.getAllCellInfo	ir.dena.iran2018.daryaei

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	ir.dena.iran2018.daryaei

Reads information about phone network operator.

ir.dena.iran2018.daryaei
1⤵
- Requests cell location
- Acquires the wake lock
PID:4910

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/ir.dena.iran2018.daryaei/databases/__pushe_base_lib_db

Filesize
24KB

MD5
abe9fa56c177c65db8c072e6d81fc41c

SHA1
abe9e9bb6f7294324f549af4435f58578ae69f2f

SHA256
53f09b897033e2496e13f3c6e8d14ec1d1f7b273c2b4d47dacc569594fef0f8a

SHA512
bb1b70eb859448050dd71822652d1976456be07c098ab41f2f75fa277cde059aff0c45629564170ee07028b85d501cc941529ab06753e5be2e710692bfa3922a

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
6200a5751ed7eef627928ed8648f725d

SHA1
74bf18e3bc312f1ef9a9a772a1ffeb1a1573cd80

SHA256
aaeea0b6a8b5243a3010cf8bdfba02f819a01b2bcd0be2f10392f6e443a4c83e

SHA512
397f5738c5d0fe70bf26afcdc8e48c26abb7f0c06a2ae9e47ce6c98483601efd4d0d3359755936abb5d124a68c4f16d75c4fb5984fe1d8225f5f2069781d2041

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
94798703171b96ceac5251fb42d3b184

SHA1
c14a7dc18b85690eafdb950062a0adec49756c7a

SHA256
19ba8b33c7e1497d25a5e122fa42923a41f81fd63697bae7e18635b04e84231f

SHA512
e4d6a29020b756b6d029788d1a15809fa5c0c421e27bf23cbad39dbd29832bdf4cfb084b13fc8733eefb6d8dd4d764830e1755ed27ff4934ca94800f11317d0c

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
7096f05bc3fb39161c7123ae0d19e175

SHA1
ae10ebc8e71faae63f2bc9a2b691a03e747b64cf

SHA256
4c03f9e8ba074d6b76168363ff697b2bb9dfe6b011b8fcbe0811e188ad09c231

SHA512
60b67ec36c663f800fc754c3c221df858ff48d5e4e3cde8bc28609e0751400f57a9c0b61c7892dbe14fc4037d99f71c46347d6ed892fa45cabdb37af273489d5

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
ddfd562516a6cd26c96b3581dc51d38b

SHA1
b49b8e9af44834d27e35c3575959287a5d2bb7d2

SHA256
dd8ac9b9fd66e5dff0cf74ff5450138673efceceb76865e33b48099ebe0672a4

SHA512
76edfc5d01465f1285540aebe240ad89200984452ba8e8bbaa3f099d4b83ded40028c26ec6cf59500a1fa1df694e3e80b11cfae587bf51929d464398a79579b0

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/__pushe_base_lib_db-journal

Filesize
8KB

MD5
2f42aba9038a63120313dccd0b27bbc4

SHA1
147123ac3f3a5a89e1a56a74532d274f68c873a9

SHA256
193816b33502e3ccd9cf1e90606a4dda8f0e4b221861b53a2c41159810285619

SHA512
00a04a4df2cfb3ea8bdaf2597659d8fa3ed69f68c230aff8a66bb73c3d26f0e3734f2965668873ed4dfbf99e65c54a3c033468dc2a37d98e236df007205d1582

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/__pushe_base_lib_db-journal

Filesize
512B

MD5
1b9beb3a85fbc8e5a6e8d955dd6cdd0e

SHA1
689304e227399bff2f1b6de32838be3135ffce5e

SHA256
6a9baebdd7ee51922b592ee699a6aca74a0e28c95774e2150348e6902d1e1bc4

SHA512
200263301eff7bbf7fbce2e67d951b39198c43047f5026dcd96c50e271827fca1b75650be6a225a3c20cd553c6b6d903e7ae8542bdc2d13dbe9e8d5ff7e8a134

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/evernote_jobs.db

Filesize
16KB

MD5
34be10ad0d7c3aed50c3d9b7fa680e69

SHA1
bb08f20d3bf537664f6ad40fbeeede323e5913e1

SHA256
c427997dd53b426ab4c51e773f22d64888d8aadb81a2ec33ff69ceb9f106667d

SHA512
3275b53fdb0609a84032411235fa0978a1718272321050ced7980688a71082ac320804c6e347d5ddc6c6e59db549e6a6426a43902bcbc2dd77f33a58025d2c4d

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/evernote_jobs.db

Filesize
16KB

MD5
7bbfe6d85f94d09962113b7d0ee8f222

SHA1
eb343cf3ab0395834955bdf90bc696367555f187

SHA256
f0cc180a82964dbda7fac88bfc346a7c9bcba9a0d8b1d8e12e2573a0d80184b8

SHA512
f6ce2c4205565765d6ff90e7621280bb510c3fa5b17f181d47d89fda5b6c1c880f04a5c9d79651079a22497e3b79ef04fe3a8993fa7d574445e96dbc63a6208f

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/evernote_jobs.db

Filesize
16KB

MD5
651751d8f1d5bf8480e36f37d58d8c6d

SHA1
a834bdff890f94ea7e0cea554aa0c81dc9f499c2

SHA256
6a30b20b1044de7a283fc2c1bb6607e5a542e8e40f4d3cd326c3bf6146dcfd19

SHA512
eb166b8358d01ac7bb5355aed90ff2b17b8c726c077491042ab18557f4ea4dfadd0925c6886e04d99863952cf18fccb31ce53919d985abbf363b057f1e3a1e3a

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/evernote_jobs.db

Filesize
16KB

MD5
955a8114dca8b4925cabf112b8b00371

SHA1
e557f30a6c1ea3a50f76b793811e465b713da49b

SHA256
8ecc92472550d096f0028e4228ce956f84acae6af501b4396127463773ecd4d7

SHA512
76c25b7363b759ee94b9e054fbca1a9da34e465e91aeceb3650abed722a2557ad08983db4e6eee1bb19aa09e578bd62e0ffc7e4dda6ec2c8c132710eb8ed69cc

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/evernote_jobs.db

Filesize
12KB

MD5
ea628e04765adaf4238a5dcdff4bbd51

SHA1
a801947619ea8c368efe9c006a324dc6339ac60b

SHA256
885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4

SHA512
c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/evernote_jobs.db

Filesize
16KB

MD5
dbb1e9aac05f6425e4d7eaebbdeef66b

SHA1
e6677e29e31699507f49894230beee6d719ed43e

SHA256
912af481991edfe22dc305f60fc5464289d31a05056511a9743204ee97d1f9c4

SHA512
9e0f6de32ae815265be2ef23d092868d9906f154ea49739bf817886820c77449384db63338168d745b773a0f66561782e14c9b1548fa4d3bfb6a24288d276299

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
6b3bcd19509d4d6a32adf9c1ca6cbfe1

SHA1
c83412d83a7dcfcb27e90f7c38206f8271181062

SHA256
7ee931890e0b1610dc34261b403541811747020b56664c3a57668379786108f9

SHA512
67e9ff22bb1dcd38f49e2d456e3a674514dde2d65b7b050049dabbee28374f4129f919f109626d4c62db2236585a3a9902ee88fef621f2d52bf6d2137848d94d

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
4ec9bd06b3807333ddb6b32c2a80d2d2

SHA1
8c60a299c40c4e8a0de40ba94a062030a2efccea

SHA256
d75d268dd5164f49670671d682061de5746f2303d30e77d12824a5415b6fb7cb

SHA512
79e514079ac7c5e9fdebb541993140e2d264acb94b2b0b60299bc996544ba53da7eab1f7fd2e7d551ca947c1ef921122aabed9522094b2460e7e138efbf48cdb

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/evernote_jobs.db-journal

Filesize
512B

MD5
a7db15f2f322fc305a3b2f21f20efe63

SHA1
ab15c4040f44c3f4babdd9eee4c452657706fa0c

SHA256
d6ad2cf15094c122a846e4854359a0a87dc98a5a89762a82620a2143e453f3bf

SHA512
6e2c1a483bcede3d70d493df9c555c9f5c8b82edf4eb420399f00a5ffe124de06d3909d2117bfbddc22ba20bb44e685d5246c33535a2e3c38148606f7314033a

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
6f18965548daabbe039ed4f871798a20

SHA1
47672289ee48cbda9682fd035da1b9ee668e9e65

SHA256
504d7750e62f2b9741a9ec7488e0b5ba6d4a58ab49c8e01d61d50a98e5ed1736

SHA512
9746e6b2c14151d40944f10738455a6813c6799e7a114f2ed47434cec9b7348d081bafa677b9904a9ec971a39252c905cae93e76e3131afdbe7f6a3cf63214e4

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
b67643fbd7873725d5aed555fdcc8233

SHA1
22b186a83112be01ec267e477deceba26b1147c5

SHA256
b59882783429c5b54488ab84984052f221037546981e4b80ff1861e229f1b117

SHA512
9677c6044f5576be51c84b3c092f16da0700c55b20e7ac9ed5324a70a3c1df853d5b2133e0aec23cfa3578a608614ce4300798b4747faa05289b6ee9973c5f7f

Download Submit
/data/data/ir.dena.iran2018.daryaei/databases/evernote_jobs.db-journal

Filesize
8KB

MD5
5a6bd9317351547a910fd9bd31977339

SHA1
4283cb0a1753c275a6146c8646e84f7734549357

SHA256
6aca0bef1178ef3445b6f6d4b10d640d19f3446726a9b3fa04a77851bb6df3d9

SHA512
1944e5040fc23f2574e86fbe33b3ec2d39ffb426a2b1b21511b22807cda9375f80a5975cb098f0c27fba26ec18bfb070d696b3882e312948aa34b27c6b2714f7

Download Submit
/data/data/ir.dena.iran2018.daryaei/files/daryai.db

Filesize
119KB

MD5
06fe7dc230e9deb9a5ccd10511d8bf60

SHA1
4088be49b5310b656115c48a5bcfec759a3f97bd

SHA256
4164f2bdd2ff5b8509b04b24d78ed8e072c06f63dbb8183290ff1a1ee87bb781

SHA512
5d11c5e79dedeb89b2c24d7da697d83dd171de387f158ef293d908c3ec7063ba59137998cc6394c52fc553d289b02906aa9cfa9bc13057b426dabda1fde90f72

Download Submit
/data/data/ir.dena.iran2018.daryaei/files/unsent_requests

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads