Analysis
-
max time kernel
2583528s -
max time network
158s -
platform
android_x64 -
resource
android-x64-20231215-en -
resource tags
androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system -
submitted
23-12-2023 18:13
Behavioral task
behavioral1
Sample
62bfb163d55007771500547ffb6d7493896d5c6b05032ac569d3b1cd0e2cf3c1.apk
Resource
android-x86-arm-20231215-en
Behavioral task
behavioral2
Sample
62bfb163d55007771500547ffb6d7493896d5c6b05032ac569d3b1cd0e2cf3c1.apk
Resource
android-x64-20231215-en
Behavioral task
behavioral3
Sample
62bfb163d55007771500547ffb6d7493896d5c6b05032ac569d3b1cd0e2cf3c1.apk
Resource
android-x64-arm64-20231215-en
General
-
Target
62bfb163d55007771500547ffb6d7493896d5c6b05032ac569d3b1cd0e2cf3c1.apk
-
Size
7.2MB
-
MD5
3b2f79fe764223ac02b59d3792034762
-
SHA1
ee90c81affe9ef440507c4186b752827e84ce9d2
-
SHA256
62bfb163d55007771500547ffb6d7493896d5c6b05032ac569d3b1cd0e2cf3c1
-
SHA512
8a9568b3517a7fbd15df0e3dbc3016eab705818894299471b666fdc208cb7c2ac09c01f2dac1173c29eb7ce75448e5c9925df875f57b9c0b6b333fb67686ddbc
-
SSDEEP
196608:xgzgH+6+za7U3pAeimbmpjD+/enzdhiU1rrsOMgXjl:ESqa7U3pAei6mNDWenzdhtrsXu
Malware Config
Signatures
-
Requests cell location 2 IoCs
Uses Android APIs to to get current cell location.
description ioc Process Framework service call com.android.internal.telephony.ITelephony.getCellLocation ir.teliyam.kerem Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo ir.teliyam.kerem -
Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.
ioc pid Process /data/user/0/ir.teliyam.kerem/cache/1582435991586.jar 4964 ir.teliyam.kerem -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock ir.teliyam.kerem -
Reads information about phone network operator.
-
Uses Crypto APIs (Might try to encrypt user data) 1 IoCs
description ioc Process Framework API call javax.crypto.Cipher.doFinal ir.teliyam.kerem
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/ir.teliyam.kerem/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/1c713a3b-20db-4f5a-a113-a573ea7b4552.jobs
Filesize176B
MD5f56f328eea1d5c96a1b96dbbf59488df
SHA1440c784cacff61932e2f61580b7cfdc3a4943c95
SHA25690949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918
SHA51236e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb
-
/data/data/ir.teliyam.kerem/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/33161595-17ef-4ff7-befc-f697092a471b.jobs
Filesize179B
MD5ac58f99a1b179d71e8621412ad31c6a1
SHA1b51fdad95876f5615735c2ab411031ff67d5e946
SHA2569537553772c29c4303e606e458fd9598c14f1eee3cadfb446e241638bee3ccdb
SHA512faf45d5eb4b890216e6ad33825ffc02cbc57914628e625164f9cbdacd5962ce8ca8f473ded2f56eb4d4006fc7cafa9cff8c9f76655f17f83f38d3e89b8d7e67b
-
Filesize
9KB
MD5e8e0527a01aefdb89afd2c508f131da1
SHA1f1103e6b260c657ceb3d95f1b023af3fda8b133a
SHA256f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce
SHA512fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34
-
Filesize
4B
MD5098f6bcd4621d373cade4e832627b4f6
SHA1a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA2569f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff
-
Filesize
24KB
MD5abe9fa56c177c65db8c072e6d81fc41c
SHA1abe9e9bb6f7294324f549af4435f58578ae69f2f
SHA25653f09b897033e2496e13f3c6e8d14ec1d1f7b273c2b4d47dacc569594fef0f8a
SHA512bb1b70eb859448050dd71822652d1976456be07c098ab41f2f75fa277cde059aff0c45629564170ee07028b85d501cc941529ab06753e5be2e710692bfa3922a
-
Filesize
512B
MD596d85a50388d91b840ff0825d60d182f
SHA104fdf7d5fe04297b7fe31035b163754309877ee4
SHA2560c4d693c6e649e1a3c43ffe40f2b42a6112bf6e6064c66ca5941e4cf576814a7
SHA512d8793e2388c344053b847c18938ff42a445d12e3b14f1c72fa8037c4ad916bbcb34f0eaefdbcaeb83eeead21c29210921fd2bced26a5b769d14893dda921e399
-
Filesize
8KB
MD5211f0d37809cee9c383acc1927905bff
SHA1d5a4f4ebb645af2d986f3a0caedb968449f4d80e
SHA256e545bab6ba426500aecb040313aed7b4cafa217a315068cdfbdc5aba1d1849ab
SHA5122264b9bf32c193eb2d99854e6540e5335c9f0ad25f2198c456d2abcad20e813ee4008068f8053aa96a21b8e58aed4d9cad27dda2d395e4d8957da088d8fa1f45
-
Filesize
8KB
MD5ea02a25302fafc49f872c12f3b7c9bcb
SHA1155a473451492e73edeef244dab0b9399d61adbe
SHA25663f5dd785f054b16a3ba88fb394982b661f0a3bd0d85e11ec4a8c413b2857443
SHA51256cfcd68f9478ee7b8b54ed2050046acf0c9d7db304a3ca0e3cc6c8dfef4441c1ef278399c472bd7c42a27c7597ad79bb5468dbbe37ce769af8b79efaf43818e
-
Filesize
8KB
MD5549d8442ee2f5b8efa9cecaf3650cf83
SHA18fb0dca75df02d9bf665ab17cfbab7aa691da0c8
SHA256a0a741beed2cf9ece83dd9ba3309f4b9c9291ee9ff64a4b979a9f7beb6004ad0
SHA51287aa5624eb18e75cf7b6e4e863c5199804008d6cbb80350d7a6ca820dad40ae656c22a37b55231a47a2270108d7d715c5146b6024cf5bfb4f82516b16f13ed96
-
Filesize
8KB
MD528f37e3fee1d97604758c56e0473fd62
SHA1a9cb3891af2c1fb92bf321da5fccf6f1c91933c9
SHA2565c11892773de35ba994b6b7181d1a6ebbf4ce43e10b88fab8d6feefc724d7568
SHA512552338ec123ba1d4888e7c2e4a0dd084603203d7bcb52f72be09b477100ae4c7a5f6125f993269a563106f71c8ca87e8d785d59fc9f08859069e8d9a74a6a386
-
Filesize
8KB
MD54178f0905cb7d613e200469385318acb
SHA1da7942b6ce4f97b50784f11740f43a65e939d26e
SHA256b8e05f17e336d4018228de83cebd687749213f2d53c951c3007887c831b7ddd5
SHA51294ea5a192dd8b58f84e8ae3649d6b9cb7755dff1ff26fabc01e4e15a370d324af3c5ac1292db17853c7393c4904442c309bda621218ce7a7b33019f2aa7525b5
-
Filesize
24KB
MD5259a1e4e7ebc4b0d0341ffcf0c3bc2ea
SHA19b8da5a0b24833a3e84567d9d8ee0d2f54d7b48c
SHA2564f4987ac3d84abad3490459fa7a32b7bfadaae5f329e15dcff36e07d34faaeb1
SHA512dc1296e2b0b18dd83a3782acb700e155ea9a60ef193bfa8c98999e7cc3c5b73a97c20a974cc956ab438aeeba812ec2d2f401fb2e714bb9bb5fb421fa4b7a2313
-
Filesize
20KB
MD5fe68b575f27e8bbbfaba5da729ef46bf
SHA1cc774069cd46a86097dde8ff2dfc0cce37370d5a
SHA256f57d0d983ee153104bfd8a7080f401ebf7d4a203478fc2c75b8fd5b275867bbd
SHA5126def4d3bbf21af0969e91fa77d10f7625f8d1e17f668f8354c924478e5ae548e92d2fba9f64d80e8acf07719242d8fd6dc8f264d9c69c369ecb13e8ea7a0cb9f
-
Filesize
20KB
MD572d17c12562fd3d541cd98a25ea917ff
SHA1f75f16f9473c58ead710eb0714efca766357a87b
SHA2568f5ac071201d3424f4c1032496d12eaaeeb8dd819c572ae8328717164a44ddbb
SHA5129247de1c2a5f198d2d41b0753aa5fec71051cd5f46205e8e57ed91b420db60042c3897da56b513bb2530536496da2bdeb0dbd668129061bdfc3fcd9eaefe2787
-
Filesize
512B
MD52ea9fbb08e8f1a761fa8bc3b9bafe834
SHA19311f00c21f776c5b17b431a0bc917a5799d947d
SHA256a9c9eb020b353a6525663931d678a3ca0e21f4fb5f1478d260436f50d2276a64
SHA5128554711504f17548f773a3e6843a425c0adbe4b9530c53ed469d237847791199874d1aab7ae949e5bcdaeb3b436fb3f2e6c981c9f1ebdca201fd371654c78280
-
Filesize
8KB
MD5ca688204ba89741863969982ad077fd5
SHA1f18b480e3d15dc7df00914fd20478ffb1decc667
SHA2567f3c71cc401cb34ce27ed3206dc0c456efd4903125a048914042ac8181f02a83
SHA512947df6afa861be905ab3db5b062ab5a417f74a04cc717c91ff863b2aa2b82da882fbfee1a53b1948a19440fe280753cfac1d0022f83429aa8cc125eb27e33333
-
Filesize
8KB
MD504f7974a07ce446459eab5c49f5c9956
SHA153f998b46aebc64735749f8a2f387f5475763e8d
SHA2561107bd212935d3c82e96e1b2af6ec6764ffb346ef7d7f49270931ed92fa6f417
SHA5122e11f96db57da79ad19f701d2a63c1f0fcb7328e9bc250b3c471e3bfc857bda1527c3654ca24dc6f529b8673be879c024fcb97bd2be4e9e0fbfa1b8cc8c108e0
-
Filesize
8KB
MD5a99bb465ee4ee6e063ccd4aa7ae04d97
SHA1a5a3d44d77ea182583b24f64b09e634f2c5d7edf
SHA256080c105ae74268c7b795697354a547171dbe1932d7381199b35943b587ab0257
SHA5128fa5713dd01053b76fe96becfc99673349223fd4d6caab634f4ec625d404a206a0b2dea8b926cffc345443865a52a75fbd30e78974d7a9fefbd477b7f2d068db
-
Filesize
12KB
MD5368455e154cbcbdbd39410e568eb9951
SHA19672aafa02572590eadd8e73b5d368d0bd49b86e
SHA25611b8ab34fe1139b8ddb973b9348b3ff4d738a7000601c62247fe63bcb89a7e4e
SHA5128266b50dfd7aca7c1ac329acb7effd5251826800fdec8dcab10a3e9ca949fba47979002476a819b135825ece5e39b3fdb5d135336cf3acfca072236b6ffde5f0
-
Filesize
28KB
MD5eda4e5f53129dca7344c7e3f3e6d9513
SHA1ed01e856ac998b6c3de46ac8a2a155f09d6db185
SHA2567c4bbb192102dd3dfc3d30cd5542d9a115cbc6c52369f1630eeb9e5ea81c8e5b
SHA512cf733d69c95b4db67de951dbd2b4f3c9b31008dd0b7f8a1d42bb14820def6b34a5bfa178d1e8cee0dafdf64531751674e7f6398743e915ef469bb97662c063a1
-
Filesize
20KB
MD595a1a3bd5adb5669b74aa64886608c6f
SHA19a6238a680b4a6def764f5247eb30280ca347fbf
SHA25697eb00077ad6aa1feb0cc2047ac11320fb741f144733bf736f74b24441dda6dc
SHA512d397cd3a7e155dac6d03343afd242719eef86c7897256dae376286ead67bcd9fbcf0c0bd899eb862821845bf54dd8e2ad9e2caafc79aa512ac1ccc85555ae407
-
Filesize
20KB
MD50638b546ccc092eea5ac521a0090928d
SHA11910b6a7cc75070454e4e6befebdf0042bd716c6
SHA25640c0aea71bdd3a83fcd4cbf4719dd73fb99b5168f9bb9fc32830d87b0d76779a
SHA5121760ff9afc10498f81b90d4a9be0da2767151bd7540e3bbc284a28d2987ab00e28c60e68865ee4154795f9529c7f7cab796b96eb8a2732b75aab5ef3e72e28da
-
Filesize
512B
MD5f7913fe63a2f7338988cdee0b070316e
SHA1af22f27c416ac33952962caf789a65bc3806e62d
SHA256d835582994e8100cf6d7ede70ab7ec02aaad59debc0d65a123363d97bf611d08
SHA5127ea2e8c3babc6d1bde90c32db21afb7607537eb5fedf9add773d77faf1251387b455b232c9d04b5e5d84f51d61b58e18bde65dcfb4eb7d696138608bd9d58689
-
Filesize
8KB
MD5b5196e052aa4a554b0cb67cc9ae4dde0
SHA165719bc36fb50d1a66e4c9138f8c2bbc569e1ce8
SHA256eebc0cc368bedc9ed2befff7fa343dc0dda35e70cff5b076a36c752510b55171
SHA512f4505882856159c9206418e0517261cc9d050a9df6e1fe4973916c1de0963fc6c5df1353457c386ce3b16b8bf2d3391f20187f12eefed55dabf882e93decdc6d
-
Filesize
8KB
MD55f9d09709fb62cf5411e4965b24ce691
SHA1fa33c38d42f0bf0c30b86a0d2d1543a3945584b2
SHA2569dac38edc070afe7834268c7cdfb4b2b331aecf5b28c3bfb43dd90ab6edc6e35
SHA5128a4d9fdc874c280d0aac091b43025740568c85d73fea841f8f89d53e4e87dc4c7dd6b7b0167805ae4664b0c17a18676585eee21e8d79d65d6d247b669109359d
-
Filesize
12KB
MD514883f13047d67cbf2a48017c2f05ab0
SHA160da9eabda6689d467302cd5b681b5ac4bcf9042
SHA2564dbffacc686e63341c516d7a6b0127a740af8759674be6c8a338d7377118f0c2
SHA512d2e0e912bd0ea3e16aca26ae05460897dd58d74dc8fb2f9351eac0a322644ceeb825707232469e16da9238b89ee2bf2d24c5faade87139220398ec479a1d1868
-
Filesize
12KB
MD5163b0e3f017becbc89b9d7f330b78f09
SHA11ef9cd8ac8655190468d0ccece0a4738634ab0f9
SHA256cf01452c3b494692386f6c5faac340eb3eb894bd416391002d56645aa8a9ea36
SHA5126a85a30d16fa58a4fbbb05d469778ee69ca79deaa74316ccb5be3ee07fdf78dde22e95db3edb1b88b18478e8747047445f85baaf9556b9a1e55d9a02a80baffd
-
Filesize
512B
MD5f82b839e1369644fbcac2a40da7c67c9
SHA1cd9af6f1300824a13762bcf1da4217d5b61963e7
SHA25621f3988c0c0e8967a40dea7ad04717377ad50b1141004bc94c6ffd94ad7769c1
SHA512b1cac0f7547255aa415e8e48cb96e58a39445a5696585414f81f0019d6f2dc061a2e9c16b099a2595060ec601298c4cfe02889a849a5ce5bdef3a46e60c6345b
-
Filesize
8KB
MD54070834ef48c72eda3a3feecad13c399
SHA1f4c1eeb8ac1e0947a20624edefeab11f33ffc9d6
SHA2569b26a549ff2c74a27e2a9f971376b96fd393811dd647754868b34fc02ff9d36b
SHA5125b9b4e87dfe69644afff819b2c19bc626b4ffdafd2cb6b3a373f3e2621e365b6d5ddf488936ccbe91ed62a5f6f89e1c022b0dc921c81779588cb7b7d54a7abb0
-
Filesize
8KB
MD5ee39abd618e31729b4a491dc5fb59c1d
SHA1f10deb735eb366a5d6a6680af39b6b3f3accec75
SHA256d073a70cb24225aa73e81ce123787387c8e958b7750d9c9cb81423bf8c916f42
SHA51252254e8fdeb3848f6041be02e24a7acc134b703d7cfa2fec323263ea5d28dd3120673ec3facc5c66618eaba645527df8e656901b6f429b5e9a834753b9a7eb5c
-
Filesize
8KB
MD574f9e7d918fdd25d500189b3663457ae
SHA11ba394daed1266a12fcdc432a898b5ac6e24341f
SHA256abd2474ca9f0f4a921db6a39d24a5da96512963ed354e63e9afbf247097533f7
SHA51248b985f09fc5c69ab95f5d0c28fbe1f1ed0d72ce9ddce75cd37078794901cbcb40ef9a3597e7e0765b08df7e5624fab868bd31eee92e5803b7c5f5554b477e7b
-
Filesize
8KB
MD52832dd16f7ec28b2c3eb6219838f9a6c
SHA13ccb0b40f29b3c493e6b9ca62f688721d40c2cbc
SHA256d94e25b3ce471b72666061307118d74064b180ac45dbe4e6b83cd95500e7cdad
SHA5120768217f671aaef261598b608f11f5dbf842edcb778628c8de1f8f0ba3fb3b08404414f00140f92728ed16e068b974f5692c2a72736cc596fd030753cb15f556
-
Filesize
8KB
MD5f393d4845e72a297c71a85c213725f08
SHA17404b392b3ff5924a65451e5bd52b9944c3d6ed6
SHA256972f766e9ae101f1567b2b8b9a552bb331d9b9b75597e25e7d1c3c224c572f65
SHA51209c3d23af3c3d0dc35c2684bf1b98f5612ca44e477eb81dcc06b940aa7bff5334524cf4032e8612698ba8c5eae8e2904f5a58853d4e17557fb9386e3e252a536
-
Filesize
16KB
MD55dc5a9e0fe1957e0ec9e0a82070e2f82
SHA184fcf497c7222f1b6443254fed71cb9c576a81b9
SHA256ff75f05e31aa3c824829e0e9ef2c0baa4bced417c22d188add62402e3f74789f
SHA51245f0596750c4212814f1e90943994a649c3a8ad95246c68b85eb700d64fb822e62727c3154d2b371d9ae3fddf4b8ba46f80c0a41416841bb0ae7b5c22a38a9af
-
Filesize
16KB
MD529aa8180321de2b95df6aa5436a982e6
SHA1805de84c5dcadfbaf3262afb1cb49af7b7d454cf
SHA256ac8ed90098a1c4d2b88e4bc6a8cd6b3b1d777ec9ade13badbd4e2815fd731eaf
SHA5126cf809047bdafbba031f890d92c9589baa6839fc4c983cab1930b07d2e864c795697f5d8aac940a861c0115426a434dac0fe1454af7050c5b63320d6396e325d
-
Filesize
16KB
MD517d0d09c2061657eefcf7f477aaa623e
SHA1dcd3d927a08fa0aad391a6b33fbb43a2e9981d1a
SHA256a040518da3b434c624326ce0a75df53860f47537f1c280c0cce6a17645224a00
SHA5124d88ba587904ee78ccf2714e505ed7421ea72848a68bae5618d89907371104c71029131832e32886936748df5e462c8f5e5614d7e95906733d96fd5b0a953e84
-
Filesize
16KB
MD516d25bafaad6d158417c16a475df3342
SHA119f5f3ca61d8e6187df7e380d2101d29617b6096
SHA256fdf55fb5d0d0c487f44f35136c21584ba466445659653dccbf647d68b789d051
SHA512f197c7ab1d5fbe0baa123a69dc07daa3b1f5e083993745fa190547601ef4109853f6476efc9ce00cb6d5ee60f1a204157be5081cd312b93caef3dc97574fbadd
-
Filesize
11.0MB
MD5c89f9c9aa82da7efb89ea5bb6a924df1
SHA1b5b3bea704b826954640536896aa012dab3dcaae
SHA25685ab6af6a561dc1450240cb9cc85e81cfc722e54869ce7aed2ee9b9a255ec8ab
SHA51233016709c276fa85f09e8609a569e5d3a9da96de1d86fe1fc3ef29764f8324ac36c6a5ab74548831799b83a40477097b12d693549b7e32eff04301ef2fd6e01b
-
Filesize
2KB
MD5f431e99aa6369ecef6e8702cc6fc5f24
SHA1f3c20e8aec364c7e085519f8c340abec4454b0c0
SHA256e7fb12b9bdedfd670679d140bd8d5020b42ce238516e603888e5f9a71aba0acd
SHA512e67590d0c7f0a7e037d35d0ac1f8d7bee47c1f74befe77cec6175ea7d42302f278db53e42f5f60415962726d7e3a8710b6fb4ef7615c827a59cfa32862e2f3fc
-
Filesize
20KB
MD5fde2ee00cbd121cfab5290b078aa3ceb
SHA1e2b77d5320e155e413d040a8c20020962065b2f8
SHA2562897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685
SHA512a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56