Analysis
-
max time kernel
2582839s -
max time network
159s -
platform
android_x64 -
resource
android-x64-20231215-en -
resource tags
androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system -
submitted
23-12-2023 18:10
Behavioral task
behavioral1
Sample
6240eb972c593af5f5baa0fcaf20e09cf798abc2e226b148ff5d56b8632db31c.apk
Resource
android-x86-arm-20231215-en
Behavioral task
behavioral2
Sample
6240eb972c593af5f5baa0fcaf20e09cf798abc2e226b148ff5d56b8632db31c.apk
Resource
android-x64-20231215-en
Behavioral task
behavioral3
Sample
6240eb972c593af5f5baa0fcaf20e09cf798abc2e226b148ff5d56b8632db31c.apk
Resource
android-x64-arm64-20231215-en
General
-
Target
6240eb972c593af5f5baa0fcaf20e09cf798abc2e226b148ff5d56b8632db31c.apk
-
Size
14.5MB
-
MD5
93a47aaae5bd829dad05c02c7252a676
-
SHA1
b61b94662be0e4a0c2402467862ef0157ca0f81e
-
SHA256
6240eb972c593af5f5baa0fcaf20e09cf798abc2e226b148ff5d56b8632db31c
-
SHA512
6b80e09e6f7fe67ce1169f1f0b347072d17ffc5c2f34a2367349fb5dc202d282733228683e7054d4bd42431b30539b5224da4eb3baedab639b34092ef9584be2
-
SSDEEP
393216:M35GJyKnAoFArC7FPhVAo9uuNwGplMPN5woU3pAerTxAs5DdhtrsXB:MUyAAoCrIeuNj2N5woQKerTxAs5DhCB
Malware Config
Signatures
-
Requests cell location 2 IoCs
Uses Android APIs to to get current cell information.
description ioc Process Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo ir.miri.deser Framework service call com.android.internal.telephony.ITelephony.getCellLocation ir.miri.deser -
Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.
ioc pid Process /data/user/0/ir.miri.deser/cache/1582435991586.jar 5092 ir.miri.deser -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock ir.miri.deser -
Reads information about phone network operator.
-
Uses Crypto APIs (Might try to encrypt user data) 1 IoCs
description ioc Process Framework API call javax.crypto.Cipher.doFinal ir.miri.deser
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/ir.miri.deser/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/a278d3d6-1e56-4133-9593-351113372f07.jobs
Filesize179B
MD5ac58f99a1b179d71e8621412ad31c6a1
SHA1b51fdad95876f5615735c2ab411031ff67d5e946
SHA2569537553772c29c4303e606e458fd9598c14f1eee3cadfb446e241638bee3ccdb
SHA512faf45d5eb4b890216e6ad33825ffc02cbc57914628e625164f9cbdacd5962ce8ca8f473ded2f56eb4d4006fc7cafa9cff8c9f76655f17f83f38d3e89b8d7e67b
-
/data/data/ir.miri.deser/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/ba9d01af-3bf4-4659-83b9-c1ee0d063784.jobs
Filesize176B
MD5f56f328eea1d5c96a1b96dbbf59488df
SHA1440c784cacff61932e2f61580b7cfdc3a4943c95
SHA25690949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918
SHA51236e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb
-
Filesize
9KB
MD5e8e0527a01aefdb89afd2c508f131da1
SHA1f1103e6b260c657ceb3d95f1b023af3fda8b133a
SHA256f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce
SHA512fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34
-
Filesize
24KB
MD5abe9fa56c177c65db8c072e6d81fc41c
SHA1abe9e9bb6f7294324f549af4435f58578ae69f2f
SHA25653f09b897033e2496e13f3c6e8d14ec1d1f7b273c2b4d47dacc569594fef0f8a
SHA512bb1b70eb859448050dd71822652d1976456be07c098ab41f2f75fa277cde059aff0c45629564170ee07028b85d501cc941529ab06753e5be2e710692bfa3922a
-
Filesize
512B
MD5c6133caafb07e147756dcffcf287fae2
SHA13538ccb621cbc75cbfee34dc0ef560b621587bf6
SHA2564d12a28268178e7800b1dd5a9f660030e7e28ed617ac7b848cf523682a87e179
SHA512174ba3a74ebe74678713c12213edb5fd32fd6b23b2b95eab5b5ef0dc98c141b8f8033b2200a3c97b6be34fd2799ac766c645cdbbab65527cf1f17a68bca8730a
-
Filesize
8KB
MD51100d238b5926f9edfc29965ebef5214
SHA18aa7dc66171c6d7d519109bfded259cac27bf800
SHA256ce9e2f94c66280db78eab632304f43349fc818b0a4e4fcd2e38d1ef45463513a
SHA512374cd1e429378705b2fd6b520a1e4898460e8f43f50f52111e24f28b8251a96020f983b3e5ab47a8a630491ca0758e32c3963787e098fc33fe1b2ad5b99b7e51
-
Filesize
8KB
MD5e705c1dc845a92182eddae1d0d1ab041
SHA10ea2ded3cdcaec1e9c3b8f65c781eecdc94ceb7e
SHA25632d183aff5a097961b9c6faa5be96043eebde1a43b843a59b4982c689bba4146
SHA5128c4dfef534e1f974af9a3ce1da21164747537bbc1cbec6d7b5879e7ebd257703b2593619a6dacb50281f9be3a7bf1d24bc796a9c90895d02c9444f93714a16b4
-
Filesize
8KB
MD528168a990615d8662e324a03d30c67f3
SHA1f7effec7051b34b6d5112c642123880a44e3598d
SHA25609d921e83a489d92ba80694090a01ce21f2c8844893186197117272fd7a96d65
SHA512d818752224b3f4423f3063b3e14118730fb041408633c83b253629b7abb45abb9d59597fc6602ad2ce7ad66ce708afd61ea53be8562d4aa1598324673ab689c1
-
Filesize
8KB
MD50a5ed177261ad0398afc271040521eef
SHA1e4b0bbe0018ad62c9c7105614a125867b3dd2055
SHA256be30e985fd8f9b257c1338b9eaaf455d6236fc0d21cf963ef58800c0729c4723
SHA5125007799f040210fc4ce68caafea9380946a1d41350998190e20d3512ba4ebf3ea5b231e21673f5aef070415bd8059705aea355657d570383072ea438a2f88b89
-
Filesize
24KB
MD5259a1e4e7ebc4b0d0341ffcf0c3bc2ea
SHA19b8da5a0b24833a3e84567d9d8ee0d2f54d7b48c
SHA2564f4987ac3d84abad3490459fa7a32b7bfadaae5f329e15dcff36e07d34faaeb1
SHA512dc1296e2b0b18dd83a3782acb700e155ea9a60ef193bfa8c98999e7cc3c5b73a97c20a974cc956ab438aeeba812ec2d2f401fb2e714bb9bb5fb421fa4b7a2313
-
Filesize
20KB
MD5ddc905007b21fccb3f16025605fc6201
SHA169d0af353adb7635b550f3a185c83ac8b173742a
SHA256c6332f4b9d6dc94a71e75cded5d372872d54fc1125e5857f8c9735ef45c4ae96
SHA5129c1ccbd901c7571c87921a3cfc8066114d701f00448f24c4411d2481f1418e37410d1fc2a1858d77c0d87c8a5643cde55e34a19bd419cb9f1a5ff35f9a6c1c20
-
Filesize
512B
MD541955435840b250dce024c89b16516c8
SHA1910bb8fd2e1124427a6c55a3a18a72807776c409
SHA2561b589537a44bbd17e4d7d2b285f08d4b3d86681d67a46209198bdbcabd373855
SHA5121557b56206d79d7f40c3199689b57118f9a553f56e7d25b882ba3afa8bcf3cc9c85c670c6b67914a0c9eebc703f9ca7bc6c890d77ba5ccfc674ae641e7064f61
-
Filesize
8KB
MD54329cabb52ccad63e560ccf4373a7a16
SHA186e300758e9f4b3288bbe7c35cd2b8a390777a2c
SHA25660193cdd014e0dfaf93e15e20d0ccf92e5737efd7351458a8aa312b0fed398cd
SHA5121aaf56f05f81881db3ccab7cc059577c0e2245a6a841e0e31b2af2c7e82c89776d700f4e0ef95d3b2f70fe2998e269ed268a7b36b7d7466f946a1d7f6068111d
-
Filesize
8KB
MD55e75e6d44a445b9e8018a6c2fd9eeeb6
SHA1247cbb5ce47ecd648bc1e13b3c21e3b90ab60278
SHA25649df8c4ba10d6f68f8624f4a33372a1158153346bebf0a9f03aaaa73dfa56f6a
SHA5129b742f297511c5ac2b2525901ad994ea0f918ceb1a7c3c5988a2462da184d8f1dc65444a309cc20f607ed5fead78d8f7e055688f8b26067f421e014d9cdf78e1
-
Filesize
8KB
MD594d77e6ed251e74ab01deeb6d0b814b0
SHA109819e8f0a5076be40ce8ba16738ea0ae4e7e489
SHA256d092de16afb0a062a25265e0c9871629623b6a660d1531fa4616a76bfefd3dc1
SHA512d1487e355d604d2145054e6103acebdfdd427e05e0268b6ef6042666b3be68c222c02916195e05ed1c5e7ccff5a703831689a25c6606c85264d980d5fb71c1cf
-
Filesize
12KB
MD55ddbb5db5da22045938d3d5371478ccd
SHA1248a305dbfe20c18b583c5d073cb578113980159
SHA256a3418e40de11654e08954c411419689d19e6fb8a33c40d1a98deaf0161473534
SHA5127bd4a75831853a7031a74e0c5722d1f5b1f5c20eb5d42121c473ff4f2f9234f80d093999751f7fe62a7a189405c5127de3af078d4aaf45693bbacb1c7e997de5
-
Filesize
28KB
MD5eda4e5f53129dca7344c7e3f3e6d9513
SHA1ed01e856ac998b6c3de46ac8a2a155f09d6db185
SHA2567c4bbb192102dd3dfc3d30cd5542d9a115cbc6c52369f1630eeb9e5ea81c8e5b
SHA512cf733d69c95b4db67de951dbd2b4f3c9b31008dd0b7f8a1d42bb14820def6b34a5bfa178d1e8cee0dafdf64531751674e7f6398743e915ef469bb97662c063a1
-
Filesize
20KB
MD5dcbc33a6c9605bcf6b0a18d06b97675c
SHA1f684316d990d3b8b96c2aa102214337052d98973
SHA256a5bedff840fa0dfd98fb815bbb40c7eadd9c26c395e78f46f5d0e609968d0c96
SHA5126aad6a1d0fb08f2f0ebb673e6acfba27746504e8b969fb10dfa05366e2f9a7f0a6671b1a27e666656b45c4838be3ff1683c08c55bea14069df93a7caf0beb4ff
-
Filesize
8KB
MD5ed3cda9a46536c4385a9f15b4412e709
SHA1e08a29f43a8da62fb54e36958d312d861fc1640b
SHA256b4d73887ca85d1c147e0551d60ad4e753e92916f68957a5d09f77f042baead34
SHA5122ef928a021e611d901c52342fe02641ae6f6e640c93333535f449518000df6f54d31f572b60b3fd4b630565a63fd4b15bc098339dcdba93fed6f62037f23f10c
-
Filesize
512B
MD5b0d57d384e9da883b1c07443ca80ccd2
SHA1a872864ace531b9d6ab7eb804a8ba1cd4fc531c1
SHA256d68086c340f7a840766ee59c9ca33751126f85a3ba52843f7bced921568a4424
SHA5123ce556f97ff127a57a74d5d5b6711f9389eaa9d6d018555eac6cbfe4cdd3eb5525ff4988ffa426fb19cf7c857caae8beb1577e5f4edf46832ecbdf2b1915b582
-
Filesize
8KB
MD5f82e85dc30b2a3dcd422c484b6f95c2c
SHA198285ae08eaea04412c40106ccddcb3c7936d278
SHA256e18f2e007431688cdb486c4ba387031ca9fa45b23d777ef34c3a3bf5a55e122a
SHA5126f6071057c5e8235026bde715697b1fbd6cc971111d17b6398a74e640788a621a489cdbdfd698763b9746ab82f2eb5436df4b6aca23e0093b54df7600fdf23f6
-
Filesize
8KB
MD5c0abe89118c60b8df4db91a234d17623
SHA16ad7352fb02bbab33fd16e7fa73c24fba1cf8302
SHA25692390e51c75f2a5a7309e1766b08fe20eac0ee9640c8d71f62ac6504d848c8be
SHA512481ae1b7d725c24ba77379f9ebf0e13b487ac48f679b8734a0abddb3c8b5295671423296ecdb112cef405d578244504f3df5ca7581bf3dd6b8cc9fa55893c513
-
Filesize
12KB
MD508c7a4c275f18825a0ff19216170f057
SHA14aefe7b5b34d4a9b3f0cc180640e63e8d5eec730
SHA256f1dc73728f1cf89e16c8879f9aff96cfcbb626515cfbb9d95045379626b08197
SHA5128a60b26031f580033f402a5dff6d841e94dcb0e7e3081fe3b66553f55fbea6e7b981eaaefe02f0ad9a176ad3b4bd6a5693ec029fbaa05f1831de9219b2a5a77c
-
Filesize
8KB
MD54261052ffc093b5e05a2cd73aa1279b8
SHA1e7d1ac5fe9777fb26ca30b70c999b8db119f675e
SHA2560a0932a10ffe37e54c59a632dc3c0c3ce4dc969b79b11182f29c23f73c8ea781
SHA512628e73766f2fd1c4fc1d46eaa86e485714b2475cb9aeb545c0be172462d7cd924b925d6be18559a683cd2fbccf8cc783a2d164bfc0c15ef676817f74511232da
-
Filesize
8KB
MD5535cc2c1eb5297e1daa983be60c2b709
SHA123dddcf8c57eefb8ae25a2d0dbb38c8714b2124e
SHA2560999537518e399c0ebe5e48ea8e5065b2d0d7459d36a76e232ad5a84c6d92d1f
SHA51267a56eeb9ff1db1be97e70998dc02cab9e512c480695dfcf78919aad44cc86c0b8c25f46570d86ffe9ae0c2dce4819b9152eb4b5c1b4efe56c5b2e35d1077eae
-
Filesize
8KB
MD57b26ed0762aad2cd3a0253f3e271e961
SHA13379728a45780ba4d4a8235683041ba35eb441f5
SHA256cf45e552b76afc1f823becb03d82be5a3e1e76ec47f17ea23128587d31e79fc7
SHA512534d4e03af42e7f022d3263e80ff99f0032a15f7c1d93d970813f7459bb5e80b07f55360ddcca85e8eaa0bb002c2ad7fe4ad4d8acf537afb27d4d0eb9c70dabf
-
Filesize
12KB
MD5ea628e04765adaf4238a5dcdff4bbd51
SHA1a801947619ea8c368efe9c006a324dc6339ac60b
SHA256885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4
SHA512c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe
-
Filesize
16KB
MD590276a8934cd2b4c1a68d88e477f5965
SHA1b2080f92c48086e0733a9d444799a57ed33aa03f
SHA25673077a41d7fff44a053ac5bf544e5cc9c65470e2043856fe80390cdb95747283
SHA512c2cfacbc57f3e08f6ded5f6aa91a020ce7dbfe9b57180d063146a5438a8f8dc638224c7adbaa9aa61c93e62fcdb780f54658f1b25dc7e435a2377195bd4116e2
-
Filesize
16KB
MD5189a45e10ba38071a8da94e7c7295e98
SHA17dd3df40ebea9459282d15f99cdbfd5d50a3e315
SHA256f65a2eee36da828d3169cc2cb65149a888af4921b1a41f482807603792bbb2dc
SHA512c05551a74d67343eeb4bbfb5cccdf2c985c3f6c3623d6278d1f4996b6033e0e59a8300291ef858bfea13f45af867d37ede1153ba9a85b4711455906af811b95c
-
Filesize
16KB
MD5ce508fedef89097902a0f536ebba0318
SHA13db881114b9ca82c2020b9321df750fcd6d23688
SHA256881e11d99e6871f6eeffbd82af5ffe59e1847ffae3f0fe2baa450c9095b7db6f
SHA51230c55f7c2aee4bafab9de0b15fe68b672b47ed0782a535801ce0c05d7722432db9da10d3f249c1497dd594f753fada9ffa15921731f336211acfa186bbacc7fb
-
Filesize
512B
MD5f5677a30a22fe44b952efd91b2d22e04
SHA11a337ac37a72f1540f91a978aec660ad4de24e39
SHA256510e9feb977ae4a4a43f1b8ff90fed9220dae771b9ff1c61ea35cf133ba5e6b7
SHA51284cc97579369fb78c459882df322eaa38c0ba20eec03525fdb5ef7679d756233eda2d1a1008c6fc860629f93cc1d6c1f53e85f80583c7168f80464e4db46258d
-
Filesize
8KB
MD5e5fb467ddb83911bbb7c2022d3995d5b
SHA164458a63167c6962a87fbe04287c5b20bae80b8a
SHA256dec95b186dc3bb8963a3281417ab475d63c84bd4016b5addac797fb17f480fe0
SHA512dd8e2001283f7bca472f94d052004688e50be31891d1bf24d1ce7d1aec40ed10b2e064839de82a8e8e3970feb4c46ec4ae00b24b2f57f68abdc3d376179b4e17
-
Filesize
512B
MD5f60b2427f1c666bd48d115c59c8dfbc8
SHA17e3c876e8768617d491ed7ceb95d40fd74f0bbc5
SHA2566d88224cda14a8bf0d23d393557ba852b4e78e0128f9eeefd1e8d74d11ed4aeb
SHA512835e159a2d64b59626e4b88e14fd097e0dfd7dbf960640d1fe6a8858f1adf5ea811f0caabcbb2b89b757aca4312addbeecbe00fbbf0b93001423b6731bfa5a3c
-
Filesize
11.0MB
MD5255e2aca7224ae1a9995e3cd8e65c45b
SHA1c371898676987dfe6813cf4426a817c13653be66
SHA2565b9cfd511c352da2649e4b4f104200dd76b3ed760d6cf868ec30a1df2895f66c
SHA512902001cfce1d6a4f75cc95fec351741c9a42d2c46b7a0518279536b5dbcc62b37afd41df9cb8a0ce9503ed90a79d1991232e6e5fa936b2e1fc33354206961853
-
Filesize
2KB
MD5fa69a232900a21655e8a9e872d8f4845
SHA1e5b49798c4cb41e0ebc2eda5b4cd1761f49fbabf
SHA25603be58771663fc01e6c2bff88178c89624103d9d5e48d48060db9cbd8c77e3aa
SHA51214ef4aaed509378d107e228116db5f3a55f57d2d7e5c20405dc9858bbc63596b2622f118e74cf5be834c5161dd6dabb3f934db78e9f32d8c337c54e023ea5aa8
-
Filesize
20KB
MD5fde2ee00cbd121cfab5290b078aa3ceb
SHA1e2b77d5320e155e413d040a8c20020962065b2f8
SHA2562897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685
SHA512a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56