9bd71f1b80667e3c5f69ead1b6c675c37f3f06d82c95f60e0b178e0c05511485

Analysis

max time kernel
48s
max time network
138s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
12/02/2024, 13:43

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

OGWhatsApp_Pro_v19.96.apk
Size

81.3MB
MD5

46a418c662058baf6e7ac9fec58d2f63
SHA1

a7ebe70e8dfbf0c99244f26e48a019b68d3167ca
SHA256

9bd71f1b80667e3c5f69ead1b6c675c37f3f06d82c95f60e0b178e0c05511485
SHA512

9ae6110768a19ae19220efef665acd99096ddcd586709f65616f89639b97b9dedfac322db5267c2bee09d3f2f5f0276365528846f9fd6e6f1190bcd97838a304
SSDEEP

1572864:M8g6VR1HceM9rgIuRzPwpJnW1c4sgpavonzoBfDMVO:M2VR18enIWrEW+a9O

Score

6^/10

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.gbwhatsapp3

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.gbwhatsapp3

com.gbwhatsapp3
1⤵
- Acquires the wake lock
- Uses Crypto APIs (Might try to encrypt user data)
PID:4539

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.gbwhatsapp3/cache/SSLSessionCache/static.whatsapp.net.443

Filesize
5KB

MD5
93b1cdb4113bcbf440e8977f1fbaad51

SHA1
b3797ddb08d1b6224e9a1b37bd82ea3ba63cefa6

SHA256
f07dc353b383371206f65c0ecd125b93bd3b86136eeb52524390783b0452c0b8

SHA512
11801f1582ccdb39c812ec684abea46ddee438c6fd0b45d7d6a57fff09e00006d7ccc230fb05e21108d5c51aa230aefe33c85349a2610860698b6c4513c1f967

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/dark/00014DarkWallpaper.jpg

Filesize
3KB

MD5
5e18d75b449c9b7754a0bee1ed02f697

SHA1
281ee6c8540a1a07bcb5d9bfc5c454ed1b492e30

SHA256
d1781dbd78b5ce64ed6239173c343948b039a2bf4e745b79904d0a4343ca864a

SHA512
e1d5106e8f86ebd63efe01d3a520f83ee3e5ee9f22310c75b8b6b2d8376dd96b016ced8159459b0e9037d8da10fdfc00d9ddfa46202a5da7543ebe2359288e4a

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00011LightWallpaper.jpg

Filesize
6KB

MD5
ed2031078d2809491a700c228cdddd9a

SHA1
097f7b02ec286ce5c1cfb6edb8b5a2a7e6a97d61

SHA256
c7ff9d1db266f5aaddbc47507b7ad8f1cab3ea8d4373932da0058fbe7720d1b7

SHA512
034d755797f7318c9f34dd604ec9f4ad5d3c26300ad54b42cbc49e27c0d7338e1b8ca8d7352e210fa2dfd429979ea96dd739afc5f89b5799e0f5181ab4ff0988

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00017LightWallpaper.jpg

Filesize
31KB

MD5
11f6390b9b9123cb9a6b03afb8b04ff6

SHA1
2cc794a57ce63f44173c82de36c040311c91ced3

SHA256
0bb186e8302fa0cd263fef0c554931b274b94976e364049c7917befd0adab971

SHA512
4321ec4209d0b1375f28c396704c480833c6b648a33496cd3a79e38411744432cc81bc107e270ac0e4fea6520697dc33524333048890f4c4e16b54d7dcdea69c

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00023LightWallpaper.jpg

Filesize
33KB

MD5
ef0ac5a83073a0065ed2da4b57fd0988

SHA1
468dd64eed2c39a1b1c9588d70815d29f2795099

SHA256
d96f87e017f5642c2aae7f8be2d0157f66ddb4d7adfd7068b95d589211b63e8f

SHA512
bd1577ec491bd56bec8082044f84b419f6afd30202a4d7ac325ae5601b027f9dbb2407c2f82c62c678fbd19a6f355ead31264afb3187904371382105aeefaa3b

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00025LightWallpaper.jpg

Filesize
11KB

MD5
cb0a7ddaa8886a568eb13fa30f579439

SHA1
7112f43c0d76c2b813f261c077a82180ef9dd261

SHA256
00d9118ef010fefe005bef10ee98608674e8b940e19bbe8a255b37856e30eb05

SHA512
e2b76fb51ae4fc70c5bcefbb046b6d4cd6e6d17261178e25a2c636e8ba16143cdd63187bfaeab742649dce06a07e9d2417446eaa3313bc6c7e1d7bacae18cb1b

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00029LightWallpaper.jpg

Filesize
10KB

MD5
565af09044723d50fcdf2e66a514fd08

SHA1
15f73577fecc0cb7e5fbc186804e23f2c30f9793

SHA256
0d9d6c4fe64d361b1c4bc72ffc481581a52a995307d76f5f4eaa53550cb7f58a

SHA512
09aee9058327d993ab3fac631ab1fa5011bc1ea9ff61b9a227814aeb39402b392014b5ee1fbf1513eac618ba7753680fac7438dffb59b936a1ef21534c65f145

Download Submit
/data/data/com.gbwhatsapp3/databases/BTOR.DB

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.gbwhatsapp3/databases/BTOR.DB-journal

Filesize
512B

MD5
7ee766f6ac999432db583f5f7cbe0e61

SHA1
6d4c1aa3a05c6e2f4c5d89cecce3af17665fb621

SHA256
d47cadd90f9b5e98b3175d283d2f33511336348584af84593ac5631be2f5774a

SHA512
b0108273f5091ddbfa705dda53d9d209b43635d5777c5f68ce45c76b4b2f53fb2f27f17c2073d24183287b07ed63916ea90cd06b02d64209cb3af9e7b31cc01d

Download Submit
/data/data/com.gbwhatsapp3/databases/BTOR.DB-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.gbwhatsapp3/databases/BTOR.DB-wal

Filesize
32KB

MD5
add90ad8a4396bfbcb04b736aeee4641

SHA1
880e25ed7e9d96d2b91d71b849520a935f66ffb6

SHA256
4e126737a5f1e0b1e8e03ca8c5eac58253138c582d453bb1bd300c4599dc972c

SHA512
57e33621c9d9bfa8562a267978d4cbd857aefe094d672a6c351e7a862c86129703b3cc0ad732ad7cd6dc812126b1cffc92ead968425557268bf10853941adece

Download Submit
/data/data/com.gbwhatsapp3/databases/EHS.DB-journal

Filesize
512B

MD5
3425aab5b76fc4c7a72907405b2b7c1d

SHA1
4fefc56a66428694ad336850d7c22ecf08cec3c9

SHA256
312276362c13c1e2c68a539e4301090c015bcfdcb89a359d5e258690b9377223

SHA512
ade999de0bd183f5ea686f70d3bb8de1428da7e887ecc28ce3807104607d2cb4e13933a0a7a9e1594e8394083b843916e3f185b245c54aa2bced16ab7d9e9f7b

Download Submit
/data/data/com.gbwhatsapp3/databases/EHS.DB-wal

Filesize
32KB

MD5
c48dd1782bc39dd897922b6edea21d00

SHA1
8d8f70c696f959cc3d47b62260f27203c9473ed2

SHA256
3fb9ab1bde175afbbf3b141f68c77fc0b4db18a05d0c4302fd613eaed264aacb

SHA512
6398dc506fd19c368585028fcb306738bebe4811f66d658c202ecbcd0234319e5507dc4d79441664e26cc0377401eef410b670d0f115650152cde9e8c76e593d

Download Submit
/data/data/com.gbwhatsapp3/databases/_jobqueue-OGWhatsAppJobManager-journal

Filesize
512B

MD5
c9ea1b684f198f9bf65aaa6804c77d37

SHA1
cbbf1c04609ed8d7623b2c98f143b0d2119a51ff

SHA256
8a0430929b0c28cb96088f6549319897119708cacda8f81fc675e371b3e3fa53

SHA512
909a1206c7ffdc429bbb23d8a2cb426b480e0cd9941f0b419bbdde8ea4f0a148acd9c5cff7d8a864055a3695189b023036cdfc229af25e28bf6bf319099be45a

Download Submit
/data/data/com.gbwhatsapp3/databases/_jobqueue-OGWhatsAppJobManager-wal

Filesize
28KB

MD5
8b9bd1bd0425dbc787cc3f22d1f91cbc

SHA1
e3b58dcb36c77d3c0fdd2e8d63e2fc4f9f4d9e87

SHA256
0ef2b98ab4a0b9075bf2f38f2fdd436de6d389472a23f8ac6f872532ae68c875

SHA512
e9f96393aeff3bf6a31efebce6deeb8fe82c35de541f9b48ad23036af19566cc7e67802d428f492d9cffe1aea3ca01beee8fcbca6f8bac905ab213da70afaea0

Download Submit
/data/data/com.gbwhatsapp3/databases/axolotl.db-journal

Filesize
512B

MD5
c424ea8d832f842e1497951dc2e699ee

SHA1
5f9494aab38fb2f0a63c061a8926c8c6948d8299

SHA256
befe6d2317b2ba8bb0508f10a7f09553dcb977f99682af7c6ea1ab1ba7b5b6af

SHA512
142547f551325dfa29207f15f77cb7deb34139744342f4e69d77caf48c492a24998139a9a490b6c25d162ff7fbcf784f66fe9188ea47ddeba35e288423a62c32

Download Submit
/data/data/com.gbwhatsapp3/databases/axolotl.db-wal

Filesize
100KB

MD5
8865e25a7ba30410cc589937f57e1d3a

SHA1
fe54513cd015838f978e058d0d5d4244aa986b3f

SHA256
a3436976ba6c57dfbd8ed31cf891861896635cc8ae5c7f5e2b645afe5db74b35

SHA512
073e1fbdcc2a6e72c86bad3c9b2274fc5183aa0883040c1876ef8fbe88463af9a62c7b6cb5eaa757ed4fdffbd9ca0ee9e68efc0c7c51daab3ffea1e351951807

Download Submit
/data/data/com.gbwhatsapp3/databases/axolotl.db-wal

Filesize
16KB

MD5
45eacd459a960e680584331e85772297

SHA1
4a769a3551fae62692a797c533871a19e78e35f3

SHA256
542a7dc345cc55646bc08f3c177e3e9494755a48929e7133ccd3986392b9b274

SHA512
fffa4b45ac1622505de3fc9b95ba95792733ca80b9a6941d64863a44ce4da3d5b1cdc8bb245b4147941ea94e21ed7b66c648b1f64e68f6cfbab1b4ea10a8fc73

Download Submit
/data/data/com.gbwhatsapp3/databases/sync.db-journal

Filesize
512B

MD5
cc3411e182e65e951a3fe7f69a0ffac3

SHA1
11ab333c105c14ab823ad4e5a0eb40fa76afaf9a

SHA256
1e109c2d2ce2bdea8f091b5bf82b25e3f964cbc4ea83594d5de60109166a1cae

SHA512
f2db3be46dc2595f2629a29ae79284f2b9bacac479935533adde3da71e143b269a7e09fa75b5cee5d1fcd3d0b52f69b7cb756a0baa41f2671194a6f8d8bdb804

Download Submit
/data/data/com.gbwhatsapp3/databases/sync.db-wal

Filesize
16KB

MD5
4d92bc024a9a5cf3d43d3041e09c3990

SHA1
b7c3d03694c2386b19248008ac061689bedf5ec7

SHA256
e5b3f4447afcadb30ffaa9195d2992f6b1cb32ee6aad6341e6d5b4d4647f4eef

SHA512
7355decb9d802600e6f213df5c2a29ccfb797cd6d0f893a30416375b2c05499c977533e2a131dbebc67acc68713fe9a48f72f6c7384c293bc777cc166a96db98

Download Submit
/data/data/com.gbwhatsapp3/databases/sync.db-wal

Filesize
112KB

MD5
f96c03b757b48986943e3fa26086f47a

SHA1
f68bf10cfe2e3e094fd4ded78a76878961f421cc

SHA256
ae3f61fba33e33aacdcf1fd6f5db4998b3c209e60103e669d69404df3a1d1e65

SHA512
436680572cc2c7ca396bbd9926460bb92197a3a3b67645b449e536cacf9b242f70a2fe531ed2a0289575308c8ac459a80c105fe14c1ed8e9016670cc089ab076

Download Submit
/data/data/com.gbwhatsapp3/files/Logs/whatsapp.log

Filesize
187B

MD5
cb2d4741ea5582bd838d2ef18eea6b5c

SHA1
b9a1b449249387aa81bff9da02560f2525994fe5

SHA256
258105ea3fd8222280f016490f7d8d74a96b350fd04950c9d8cd83fb5f05149b

SHA512
e2672b995e65fbd4d51f40874a6ec804cf2fe95ff88cb0df0f9948376f7e2a95a1e481e802f843f5a6bd1f8a87ab6692a461c0503b12d273ea0ce40061a1446f

Download Submit
/data/data/com.gbwhatsapp3/files/decompressed/libs.spk.zst/libvlc.so

Filesize
3KB

MD5
cfaac46a9b3c925a53382f453c8c0d81

SHA1
8e82c86b6d77d7e1ef003aa7796b83ccc5efab7b

SHA256
0d87625993ef963e9bebf8f21f22525807d48dc26b3195fe94bedfe877f376e7

SHA512
22c8297645c4ffb8ba08e44e1136dcc3b3c16100ff837d7e3ae7bf3a1f181c12e9aa33f3f598d6d7e001536b9812106b4785c01f91a76874cd220a6229e787a2

Download Submit
/data/data/com.gbwhatsapp3/files/decompressed/libs.spk.zst/libwhatsapp.so

Filesize
732KB

MD5
c78993f4d13b9c76200602ba8c7a88b2

SHA1
246b808edf82c44213becf5330d43006f46ada77

SHA256
81897263bbf38c00a178e6372ec210256a3364262608407157d67dfed0f8ec64

SHA512
31b351814be098255be2453b422b9dd0783b9b23c9d35ef30cec2bbe1978bcfb5cce27c859f8103a09f8752723f38068f76f44f23b5bfa61627633c0dd515fdf

Download Submit
/data/data/com.gbwhatsapp3/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
c4e1af277cfa7c8dbd8621036589d08d

SHA1
07b3078b3bae0079781f1ffbc19e1f200f4efeb0

SHA256
fd1f49ffa441e5e8aad394d2956670c365a0a22640d072d2f0c3c9bde33a14f5

SHA512
21f7947ef0d810ec266e62f188fd8393a98e9678e94ac15de5ecdafa452f14ff7f2a1cffd776b3a4118003c0b7481eb70198a18617c2a62e3cb3b8327bec642c

Download Submit
/data/data/com.gbwhatsapp3/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
f7fa9d6e9e09e9c0588428420fed894d

SHA1
e3a7beeb1c6585e437563ee44c8d001b8877f54a

SHA256
9f9aae12c7df610bbcd8703c58d291cf35d3120947f85b755ef1e5bddd2d9721

SHA512
11768311261678bf41d3f7e0acc20824ea4a75186bbd0f9d5435c2c6e0d8d13ee11582c4bbd1e8db1611e4728c445c1cbf8cf704bd5b4acc35fb6e67288a9d84

Download Submit
/data/data/com.gbwhatsapp3/no_backup/androidx.work.workdb-wal

Filesize
112KB

MD5
29f0361128bd4dff73258aa2066050e9

SHA1
1a4c4f7040817d7e0f90ea6b4c4c4f592c94dc9f

SHA256
28fa4c521e49d023ac1f0545ff24b32d4ca3188b8cc1b94f9f9e0adbad0e5a07

SHA512
68b8d106ebb52db32730f0e7900c6f408ded16220ffd7410d5ab81e3107625eff90aaec5e3637e1ef3d80527f9252f6814d251852366b790e2f34c91f07f7638

Download Submit
/data/data/com.gbwhatsapp3/no_backup/androidx.work.workdb-wal

Filesize
160KB

MD5
08b4a62d27094c017e31671627680cee

SHA1
b60d514d0096b4b76f261026b69c6752a14b1bfa

SHA256
b2d27cfca5a5fc0f6710df3bc52f4488e2b3585d929e2da47733dabada0a9e04

SHA512
c7ddac8a37c04fd3332b731b05bbe5dfc0002dc1b259c0bd9b1fa1e9983d7d856f0e4b8beb2a1bb9aae9fc70c52991c574dda17a1788f9d507cc3185fcfa7a0e

Download Submit
/data/data/com.gbwhatsapp3/no_backup/com.google.InstanceId.properties

Filesize
63B

MD5
ad153ef15f2c5706b028d28151769719

SHA1
2741b85154557408e21abc061d35f913d9d9816a

SHA256
00d185176a3f84be0e853d03ea4ba75c455327ad4ef57b6a85ba7c4db2170f1c

SHA512
95a7ca57334c1af269f016c038a5ca154f26d0496df52aa95af06a430edfb1e54c3d8b0565de9d507e86a79e7f3dc8d01e0f2dfe236aed6a316b9019e2ce658c

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads