Analysis
-
max time kernel
2582897s -
max time network
162s -
platform
android_x64 -
resource
android-x64-arm64-20231215-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system -
submitted
23-12-2023 18:10
Behavioral task
behavioral1
Sample
6240eb972c593af5f5baa0fcaf20e09cf798abc2e226b148ff5d56b8632db31c.apk
Resource
android-x86-arm-20231215-en
Behavioral task
behavioral2
Sample
6240eb972c593af5f5baa0fcaf20e09cf798abc2e226b148ff5d56b8632db31c.apk
Resource
android-x64-20231215-en
Behavioral task
behavioral3
Sample
6240eb972c593af5f5baa0fcaf20e09cf798abc2e226b148ff5d56b8632db31c.apk
Resource
android-x64-arm64-20231215-en
General
-
Target
6240eb972c593af5f5baa0fcaf20e09cf798abc2e226b148ff5d56b8632db31c.apk
-
Size
14.5MB
-
MD5
93a47aaae5bd829dad05c02c7252a676
-
SHA1
b61b94662be0e4a0c2402467862ef0157ca0f81e
-
SHA256
6240eb972c593af5f5baa0fcaf20e09cf798abc2e226b148ff5d56b8632db31c
-
SHA512
6b80e09e6f7fe67ce1169f1f0b347072d17ffc5c2f34a2367349fb5dc202d282733228683e7054d4bd42431b30539b5224da4eb3baedab639b34092ef9584be2
-
SSDEEP
393216:M35GJyKnAoFArC7FPhVAo9uuNwGplMPN5woU3pAerTxAs5DdhtrsXB:MUyAAoCrIeuNj2N5woQKerTxAs5DhCB
Malware Config
Signatures
-
Requests cell location 2 IoCs
Uses Android APIs to to get current cell location.
description ioc Process Framework service call com.android.internal.telephony.ITelephony.getCellLocation ir.miri.deser Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo ir.miri.deser -
Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.
ioc pid Process /data/user/0/ir.miri.deser/cache/1582435991586.jar 4635 ir.miri.deser -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock ir.miri.deser -
Reads information about phone network operator.
-
Uses Crypto APIs (Might try to encrypt user data) 1 IoCs
description ioc Process Framework API call javax.crypto.Cipher.doFinal ir.miri.deser
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/user/0/ir.miri.deser/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/8150c28f-5310-469a-ab0a-4147a25e4c28.jobs
Filesize176B
MD5f56f328eea1d5c96a1b96dbbf59488df
SHA1440c784cacff61932e2f61580b7cfdc3a4943c95
SHA25690949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918
SHA51236e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb
-
/data/user/0/ir.miri.deser/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/857f935d-f276-4e4d-8321-7bb479735eb8.jobs
Filesize278B
MD546956fd5072a713ba8599d18563b39be
SHA1833a878acd5ded00eb903a33c9654ba281d1c00e
SHA25652cc517913b18255607e6e72b6aaf97524af5077c2007948bd18f14bfaaca0d6
SHA5124cf3bf029ef91e18c25219f6c1ddb5a889dc30b67ff0a8677e77b503179a98852731f495ab368eb52445cfb97d89edbeac566ca3f495e2f0b85d88da48f38e65
-
Filesize
9KB
MD5e8e0527a01aefdb89afd2c508f131da1
SHA1f1103e6b260c657ceb3d95f1b023af3fda8b133a
SHA256f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce
SHA512fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34
-
Filesize
20KB
MD5fde2ee00cbd121cfab5290b078aa3ceb
SHA1e2b77d5320e155e413d040a8c20020962065b2f8
SHA2562897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685
SHA512a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56
-
Filesize
4B
MD5098f6bcd4621d373cade4e832627b4f6
SHA1a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA2569f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff
-
Filesize
12KB
MD5f41f531c07d4141546a531ff9caffdcd
SHA19dcac5aed06972d0ff6bd4cc1f1cdff85b36d3f5
SHA256bb8dee5b5c3779f175abbd142722eb0022b98d374783aa80145b34614a4de646
SHA512e0c8d1a820cb4c098e45776e8b50ea8c83944ef2e3f005cb0acbfc07688974d370f78100ae022f62564fc4c12acfdc43b710c18ca1c30f4f575bc08b9b12d2d4
-
Filesize
512B
MD56f9860f2b8412e070b88fb134bc049b9
SHA143c1fd50679254db995ca83ba48af30bed4116c7
SHA256506ac2d46014cefaf5d45233424986991c8c3a6bc43841dabe9f0f8318960a4c
SHA512e941b13859c9a1f42de594ffe2700e3eab51e7381fb674d660ab43fe6e6636682ac9b4c8cce1de5d4e64221c87937a92872218e9ebb0e02ff97738cb4d4a146a
-
Filesize
8KB
MD5ae613d27533428232e5487c3dd7b43cf
SHA19854a515e08a657c20e458ff0db3388f169cf135
SHA256fedd1f933435fda4b1adfeca9e8c5689011dfd11dcc8b0c8a9c5df9850cd4d61
SHA5129266ed49ef7656167e18945faeb21c2b769962f808bfb9dd04128767223cbd64c0716c6dd7533cd6f7efc6774a735bd9479c5e21e6463186a640d9719b485439
-
Filesize
8KB
MD5765bba7d7869b47311bfe12fb777e213
SHA1e8703aaf4d17329ea5394146b636f4b2f3a7a075
SHA25663b325322319ee3e51f95c7769569b78720ad45adcef9466f4c85d9377f93150
SHA51286127f00f369a2bc3e26a33c7e4de53d0c984af49219d4ee23eef727baddf843e2d3ec70e33b7de8ab72dadea6df2546c8e30a47e3bd0f4d64292ba96b1eb494
-
Filesize
8KB
MD500dc54138ff0c0d028c9789f51ee2d25
SHA1d525aa055c2144f37a077335b16a6a948f3ca1ef
SHA2566a6b7b1e479867de1fa3592e9e10cb3c3f133ce461e38d9dff4666c7b9b2c808
SHA512a1c2868b62d57920ae449c8f1a6337676075a56bda30e06f6e2ff9c4c9f1dd2cf70df47def1b53d1d248dc3c984d3019ba86551685c27a5ae56902ecf18b6b2b
-
Filesize
8KB
MD51e6e1ba7cf42a656d7c475c9e3f647c9
SHA17ed924def07141151973dddde8528d211863c73c
SHA256da2ec7c459e06ccca7e4114315b3bfc50f65f0c97d532e6716ff3072aaceb0bc
SHA5123d4fe9a35c631f3d89169e871208d892c9cebc2e48f1a30a8487b9752b1a769d5ec77ad861f0531d5323fa02a5921fd734aff74a6f70642a8a6192407e0e8f0b
-
Filesize
20KB
MD599fe36f7b3b714187cc1585c90de6f1e
SHA1d2c7f1a63715d75c9b3830d84b26b5f9b5b574ce
SHA256c7b1d0410fefd3f1c1993e12006b9308677109777a8c12f11d0c6693ffaa2e7a
SHA51248ac1ae3a77a062ee03136067a86b6be3b513ad7372556c73e874c7c9cdad95d8026b7bf1abef59f13926ba160c76ecc9f7a36e033d2b269f8dccb3a0320335d
-
Filesize
12KB
MD5d79c7ceded880ee58931b70db59fa399
SHA11cbe07c13a8a9e864883d81a473e95a1213ddc0e
SHA2560870f35a7b34ec6e15fb3d31b62d01977bf4b3e93b0ac99582e3910d774aa083
SHA51216a206e64d9bf04f00ef619553b1aaefa0e70799f975743f99d884d8deec88a6cfba9ef09e101035228e1413f7ff09903ba7dab99dd4384fbce1ef7f6246a009
-
Filesize
12KB
MD5171aedf968e17a2744d2585715606cb9
SHA1bbeddeb3b89fcf809619c35b4a318a80e7d5b029
SHA256d2ab452d9360848f46af866b870b5c6fc98230b09c72b89cb1a4b2778586678e
SHA51278a0f517ee3d21c153dda6dbfec4187ebaee9d520d7b1b63f358bcb125d08aea53f26943907a56fdeba40161d9fc7e4fd63f9ae3154dd2ad887ba0162738285b
-
Filesize
512B
MD5f5d8dadeb17497790993a9f91a61ffe1
SHA14ca30efa47c862e8fb34432b4be5531b180dcd5d
SHA256d23ea9143df877d5da2eab62df527cbd9380f9ea7c75cc5b9d1ddd12d64869cc
SHA512b186817ccbf92df307381e89712ca05955fbe39ff633968ffbc92d450ba1b90fbb553f83be33c3d5a91728a711d09eb7f8b21e901da9d03c3004a08a8ad4ddd9
-
Filesize
8KB
MD583a9d85b3632b8e013bb6ce73d466930
SHA121b5a23a65c9d2936571c2722355017d7920eee8
SHA25666f2c0f77b1edb660a51a7d39ee49224f5c5cadaba5de14a61847de77b480abf
SHA51276b028ab76721ccce19bf8367d1f2cc5fcc63fcfd30666a89ce8a6c1af25457ca36eab1abebedc27f5a9c823fdb38c1c5a61316256ce3e81b7f0343e865b7e51
-
Filesize
8KB
MD5a9596b85f3b5af762805dde0580b2672
SHA1715f430cacc44361e6220d9a586b4dcccfff7a41
SHA2560102a44589fce33c19b00fbb4c64bfaa905e9c8524b1dd91552e547cb0316bde
SHA5125e29a0dbc9a6dedfa33af18ac6163288f33d9293b4965c6c51af6685ef84f3ad2abfaabc43d025dac7fd836672758c846bdc2a8e69ece337c7e8d8439bac050b
-
Filesize
16KB
MD558c0b6e45328752b20ac6e719ac034f8
SHA1372b2638afd00bbbc4034657b3df3d2e428fb367
SHA2569d74f93afa5a179b1ba2f19f154b2880aa8b99c88209802099045a0874d2426a
SHA5122d347d5824b9ab701e341c89e8327a95fd6bab8e92ee15ce9550da368d773e22bff304072a4854df5ab763750a7401f7aa61a49e3292d62c27fa9f20536eb3ab
-
Filesize
512B
MD55d81f94223a88b1550eb777eaff6f631
SHA175faedc910dddcfb61dd83cd297aeb5f38cac9c9
SHA256811af43706a59895763154e87979bc8a29e7b65dbb79b380f56a2e7cfa682e72
SHA51273d24bd535359f4e06659ba87faf8e2118ac0731831b3ba7ce97a18f6bb2e56adc78b0f817e32db6444c73ad6fcc8116088a93da016ebe78bb88a0fdc8a96447
-
Filesize
8KB
MD5fd1fc3f04ac6802bb93268f9f470ab24
SHA1e5215c1f2938acc9fda9e8b715259aa402f3b0ee
SHA256638608ed7476128093bb24aa6d25bbef9101e25d61569169387190531ee6a599
SHA51240ae9e00be94c0d68049d19869c1b12c592d0534ea728e99f21326110b8456ca3da3293884671634ff6644c4b05f4a0ced82c284aa44c8bbc36af7f7e0f094c1
-
Filesize
8KB
MD5b5fe2ea689224f40405d065d2ac4637d
SHA188ce27f35f4ffe4c42a75ac9148feab2b338d82b
SHA256e950e2d3016079e967c62df0aa334d1ebab82066dd2affe054308cafd6b45560
SHA512111ad05c905282fc0df9c2a9638815424e8abf81b7ccfdf16bd495bc5fbe4de5bc8f0ed22d0d286f295b9472c38eb0cb060b26a61f9469f08782845bc7dae315
-
Filesize
16KB
MD5d65a9ae6c75b38123e52293aeafb6fbe
SHA1ad6c4ec9daf8154d7bb44005a24e326e04f9f18c
SHA256e036de40898eb583715385329297d86a86c38d39f6dbf9870f75607fa3fa561d
SHA512ec4ba7138b69d87579bcadbece8193063500123378ffd006cbcc8767459abb6adfcc3a3b0a430bc7a92850309747fa8f9bcf17e2a6c0ee6b95478eea21dd0475
-
Filesize
16KB
MD5fad8a939a00ca8937dd25d1693d5f620
SHA1331594d6dca12120fcc44b4e19f5e89a03d6243e
SHA2560dd096c6133b5926c1e74b1f8507e76b5c0323fbb7612e90e86c7510e448d64f
SHA512e20334bccfd60eaaccb723845d303b613ff74d2b109acb6def13f208e39a7fc68bdad50396c6cf66b6ad707f06b370824f4736b0f8510976566ecfd4965cf0cc
-
Filesize
16KB
MD509eda1ef06ab18f9d3c10a6ae65054e9
SHA1c75ca1df1780e5600552c064cd8511f68249856a
SHA256fd66694bec49ca186b72979b65f754c03e51618af604fa090a1dfb541b6c4e62
SHA512f8e3b54c460b7c0652cce5577d995fcd7b6f6035e1eb0bfcbd2272bf9ee2481149f8cccdc1233fc21b2d57a8fb6200d201db5bdbbf4da109691001b07afb2fe0
-
Filesize
16KB
MD54b6cbe192ab71dbcb4b783dd9d56f745
SHA16d8c5684988f01e1a305f7475f935d93a2dc618b
SHA25684918c652bd6dd8d67b6e661da361f1a45e3eb956d95058e3b0ff89a22466856
SHA5120b3b74437acc261a8029b28ed1b0b4740dd35966881a3675316047fe533e4a36997e8153824ba1222936b03eaca4d1043b6b73b9912f8646a7a439944cd01969
-
Filesize
16KB
MD58d0cd16581ff038bbc5e88cff4e8ad97
SHA1af55a06a1a75e0c5505b71c89a4959095fca7b51
SHA256bc034e9e3e9900bd23acd68a09598e0f4fc6b44bbf09c889e1f21ee4a6094e89
SHA512d3aabd95a96fb1a86bb7623b90df3cd435f2897f59926296d8df1a13616b7f1570562648777a3706cd62681367727247e006f9dc503868d660e87ab7e6ea612e
-
Filesize
8KB
MD5b34ef2652bee9e415312203f168c4a29
SHA1417555c32b01584bf0146ee37cd562016ce5a0c5
SHA2563636d75ee0ee051d1381bd6cb126a9a2796c9564db265a558f96b3ade6c2b458
SHA51236601d0062256d1764759ee598495213b288f950588f1c2dd1f6f85dce2633bff6ac72c49bb5e6100bf0b111c7850503ac27539eb583e389353e2f09272f3560
-
Filesize
11.0MB
MD5255e2aca7224ae1a9995e3cd8e65c45b
SHA1c371898676987dfe6813cf4426a817c13653be66
SHA2565b9cfd511c352da2649e4b4f104200dd76b3ed760d6cf868ec30a1df2895f66c
SHA512902001cfce1d6a4f75cc95fec351741c9a42d2c46b7a0518279536b5dbcc62b37afd41df9cb8a0ce9503ed90a79d1991232e6e5fa936b2e1fc33354206961853
-
Filesize
2KB
MD5b6d68786713d840a11a5faada700e6e9
SHA19632e90803981f913140f77fd6d011c731a960e0
SHA2566356d5d1c5709c88b334d1d8468956e1b8114f5e588256dca9db750a23499ba2
SHA51255ce33728c75b667f6c212e61d6b6ece52198aba9e814135605f2f7bac69ac85375e740e0b45d5463b89b33da8439dc32188f24890eaf9d1dedeff9d3a20e0b9