Overview

overview

10

Static

static

10

9bd71f1b80...85.apk

android-9-x86

6

Analysis

  • max time kernel
    53s
  • max time network
    138s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    13-02-2024 03:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9bd71f1b80667e3c5f69ead1b6c675c37f3f06d82c95f60e0b178e0c05511485.apk

  • Size

    81.3MB

  • MD5

    46a418c662058baf6e7ac9fec58d2f63

  • SHA1

    a7ebe70e8dfbf0c99244f26e48a019b68d3167ca

  • SHA256

    9bd71f1b80667e3c5f69ead1b6c675c37f3f06d82c95f60e0b178e0c05511485

  • SHA512

    9ae6110768a19ae19220efef665acd99096ddcd586709f65616f89639b97b9dedfac322db5267c2bee09d3f2f5f0276365528846f9fd6e6f1190bcd97838a304

  • SSDEEP

    1572864:M8g6VR1HceM9rgIuRzPwpJnW1c4sgpavonzoBfDMVO:M2VR18enIWrEW+a9O

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.gbwhatsapp3
    1⤵
    • Acquires the wake lock
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4291

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.gbwhatsapp3/cache/SSLSessionCache/static.whatsapp.net.443
    Filesize

    5KB

    MD5

    98925f29f7d9ea152d0bc6c3afcc8f14

    SHA1

    63c932bc7e582fff5cd542391e6b0274b58b4591

    SHA256

    c976227dfc5ad79e234f858e4c1d5c14b3edb74c8a2cfe5f5d9f21bc5c4db1ee

    SHA512

    680d4281960cbab5f15206b01cb98f369c0b5a4b8d4522c0b26ce7d70f1ffdd016a74fbd2af43b99f9ae2d52873994961fae78d881f0bac9b53cf75e455f79b5

    Download Submit

  • /data/data/com.gbwhatsapp3/cache/SSLSessionCache/static.whatsapp.net.443
    Filesize

    5KB

    MD5

    9eff23015ad59ca4cf5af0df352aed2f

    SHA1

    1221585ba5a1ad2424fdccfe78a9431321946fcb

    SHA256

    0ac8ef563d8d80ee45faabe00d60c817e9ade37640c5bdf23414e0e4c396e884

    SHA512

    27c7df708c3fbbe5ee6984652d5ebe033a567ee10b3b07711c9a310923e44514ca1ddb9eae0d26aa8cad4a3729c2767330faa4ed61f5ccb6bd5351288da535ef

    Download Submit

  • /data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/dark/00005DarkWallpaper.jpg
    Filesize

    3KB

    MD5

    73a86bf812966a7c6ad0be9e8bcc1a58

    SHA1

    0ce4bd31324d287ecd21d138063c9510dda452c8

    SHA256

    781e06e41a1020793c3c18a337443f367b544bd3b37adffaf733bf0ac80af128

    SHA512

    a61fe84fdd6e74aedd03e25c5f5af5fe628eaed4bab6ac226c1c65d142c3d23407f710f7ae31ed7d32db53d30fd2d5d2a7fc5910403eda15616bf13ac2012a63

    Download Submit

  • /data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/dark/00011DarkWallpaper.jpg
    Filesize

    6KB

    MD5

    170f7b8c27e89e69894c7424d8a51c0d

    SHA1

    1f04dc232acfed339125909c186c10edf4d2aaa8

    SHA256

    ad035e1d70649231fd3b1ee0b1ac649e27f1c373ec090858ef7b4e7b5d541c82

    SHA512

    782b4229599d03463307b0ef5ee9c66fcd1e26a797cd78bffc3558723437fd2c34ca0525fa685071cd18ca968c22b57a957f29839be83bc313fe5f5b0f74f793

    Download Submit

  • /data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/dark/00024DarkWallpaper.jpg
    Filesize

    11KB

    MD5

    06f21dec58fec12197f66b32d2b28f2a

    SHA1

    62e336fef1ea67f022e8722d232719d35e99a7ca

    SHA256

    da9ce86503b2ce777a93adf45e24809bf350e5512dd87419f44f9b5422643873

    SHA512

    abdc1f4c8c5652188a8d658b0fc22057a984cee74fcfd465ebc80c43bafecece476815a18995e0e1dfed3a7a62f4a6fcf048e0f19eeb2f85e93a0947a76d9218

    Download Submit

  • /data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00023LightWallpaper.jpg
    Filesize

    8KB

    MD5

    6dba82015636a8c737ba6611e2b99efe

    SHA1

    0210d16f412fca3225a4a72b11320ffb224de388

    SHA256

    2e380d82889313ef78b372a9277e4bddb2c0e933a561925c06a16ee4b300f737

    SHA512

    fccb24cb0bc5f49d65b7bf4af42509b26a8e542368e3bd8615156e62383944faa23db3760b4c0b7514af1c95a318eb9d311e64750ced8f0cbba98c5622c8dce0

    Download Submit

  • /data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00028LightWallpaper.jpg
    Filesize

    3KB

    MD5

    f2a89f835cde4d6a9cc0990f1e4aeae1

    SHA1

    6e023f65d6ee18195c6191ee308536303231f2b6

    SHA256

    b82c17650e8e21d9e5eca1a21aac3502054f8eea267fdc90b29072b87e3b3233

    SHA512

    569498808cb829c9a7622e6b5920d5e9ce09042cd5a4d21712a5ec84839611077a194b6db81b4cb06338c8e427c23ea7dd36156665972e57e2e5a4ebb5a7e971

    Download Submit

  • /data/data/com.gbwhatsapp3/cache/downloading-5100397727278755876.tmp
    Filesize

    73KB

    MD5

    26f985184419c9baf376aa694c5b9cd6

    SHA1

    5cd7628417612d95940e1b26b21b3112f938abfe

    SHA256

    5a89ab27be17e625c094159b40f68b6714ea3cc3cf8de1fd84ef584b725cb8ba

    SHA512

    2a5d9dd6d7ed5f6818417b6bcfed89e47c1b0e25242aca496e6356e62e3beeb02e3f168eb5471fc73a39bc56841f2109b753ff2c55be116774859dd0185d1ace

    Download Submit

  • /data/data/com.gbwhatsapp3/databases/BTOR.DB
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.gbwhatsapp3/databases/BTOR.DB-journal
    Filesize

    512B

    MD5

    bd872cf59fa1d77b14b55db9f9f7f77a

    SHA1

    e6e718cbbf437bb0c3a2549db457d64db1f27f54

    SHA256

    0debfe300eccc6adfd59ab8892855a7c2d3268b1a9fe373ecadc7b527679c5b3

    SHA512

    9acaefb5387b255c7ce7ffeb54f3afcd975b8c1e7930bb48447314aa05555a074b37b5b056073a184089c3fe5b49a6d6f2025c36dcf2dba2d71aab249aa0a506

    Download Submit

  • /data/data/com.gbwhatsapp3/databases/BTOR.DB-shm
    Filesize

    28KB

    MD5

    cf845a781c107ec1346e849c9dd1b7e8

    SHA1

    b44ccc7f7d519352422e59ee8b0bdbac881768a7

    SHA256

    18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

    SHA512

    4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

    Download Submit

  • /data/data/com.gbwhatsapp3/databases/BTOR.DB-wal
    Filesize

    32KB

    MD5

    ba02819ab2fea30b8df5c6d6a6233590

    SHA1

    edbfb59efb4baf0d566b274bfe92f0b16afc562c

    SHA256

    c4cbb8f77e90bef845ef49504bf3084674948579832824d2480c6dde28d12578

    SHA512

    273ae1d560fa789aa2be9a8181d3ab4230db9f26ae6912d45fb9ae03e9aafa9b393e94e0a90936c392b931eb5b0700f75930288de4b61844a3b8ba17017e348e

    Download Submit

  • /data/data/com.gbwhatsapp3/databases/EHS.DB-journal
    Filesize

    512B

    MD5

    161b2a311774cc9576c0d1f1acba409b

    SHA1

    7b007cd7a53b1d06f3a5b791c9cb1a6aee183fda

    SHA256

    f995d0dc98dbdb44e6d26f2946b55deb8ba31b07302aab2ab24b76b6497476dc

    SHA512

    7d9182fc145fbdcd4d120413fee26054973136b9269e255e8c0b3601ee2b3eb9b530a84f884956379beadc7561a2546de1d14baa2eae461a4fb96828f27d56b8

    Download Submit

  • /data/data/com.gbwhatsapp3/databases/EHS.DB-wal
    Filesize

    32KB

    MD5

    49c559dca7cb3a3b239346dc3ba45efe

    SHA1

    7fca18b73b257a858139e1d81e1ee6b8d96ae5f0

    SHA256

    928690147c9dcd92604706f5e6fd3e86ad08935380c9f9bbd3b772b2d3d44a34

    SHA512

    f95c8db700d85f9327ee67ea1381218a693401c94f7b27bbdf4b37dad9db97c6aa05ec4844c7ff3944d3e878c83a1a5a9f37236442bc62985632c8f0e7ed1416

    Download Submit

  • /data/data/com.gbwhatsapp3/databases/stickers.db-wal
    Filesize

    156KB

    MD5

    de84b3afeef3edd0590b5deb05e9b7b4

    SHA1

    bd67bb4740d23303da2a7b7333330eb7ce166f58

    SHA256

    c04307b6d6214a4518cc1be9ce87d56d474a2404224c671fd6fac9d63bab4c66

    SHA512

    0a76ef997541be2b3415bd6a56b8a84b4c97a16515ac5f4a908eb58e33e14bba7bbf910d9a67ad2010b29b56e1506e1661d4602cc68c749d072aa5cb7e31618d

    Download Submit

  • /data/data/com.gbwhatsapp3/databases/sync.db-journal
    Filesize

    512B

    MD5

    c5e5fe2443882158a2fd06e02d589433

    SHA1

    4c0753a9ac4822bbfdb2754a2353ead476476a26

    SHA256

    885fb1a4b6608d983a24f6b7a6670e02d0234c90f892e881ae19d79af1338aef

    SHA512

    c86115497dfe7e2b76203b9ff812504975199cd80ce2ba8651e29d03fe65a7a89cf021acf8cdaa28ea6678c5b2f9aeaea49ca5f99763b01484eb6c07d4a62ee8

    Download Submit

  • /data/data/com.gbwhatsapp3/databases/sync.db-wal
    Filesize

    16KB

    MD5

    52aac2f727a446b4bd2689e4a46f4d3b

    SHA1

    5a2f81f93db24dfa88edc9eeffbdd3e027118df0

    SHA256

    21402c68fcef5c28c9c8674873f409854d88dd2867d1b323945f24702160bcbe

    SHA512

    983fb53e799f48c1a0e2b2831ba88d0f1ebd790ab0ce4c98957f863c3d11c1a6eaf5fcf4403bb72e86bd94e27a5ae2c7a8fcec1445e0431addd51ca2fe5c987c

    Download Submit

  • /data/data/com.gbwhatsapp3/files/decompressed/libs.spk.zst/libvlc.so
    Filesize

    3KB

    MD5

    cfaac46a9b3c925a53382f453c8c0d81

    SHA1

    8e82c86b6d77d7e1ef003aa7796b83ccc5efab7b

    SHA256

    0d87625993ef963e9bebf8f21f22525807d48dc26b3195fe94bedfe877f376e7

    SHA512

    22c8297645c4ffb8ba08e44e1136dcc3b3c16100ff837d7e3ae7bf3a1f181c12e9aa33f3f598d6d7e001536b9812106b4785c01f91a76874cd220a6229e787a2

    Download Submit

  • /data/data/com.gbwhatsapp3/files/decompressed/libs.spk.zst/libwhatsapp.so
    Filesize

    1.4MB

    MD5

    c153d367677731f6f924557f300a04cb

    SHA1

    a8575fc77174c1afff8dd7020c0bb93e1a7a243a

    SHA256

    b06e4402e43db218e54ed77c9b29b6000e782519823228e2598d5ed30d921431

    SHA512

    ff75c3722254772362534899b12bcb6875976abf5b9c536735db3fe8e092d319574e089657844779ae32427c4078873aae18b19ad5e714b79d89eb86e59fc501

    Download Submit

  • /data/data/com.gbwhatsapp3/no_backup/androidx.work.workdb-journal
    Filesize

    512B

    MD5

    07b00a57e261600fe340c428fa4ab9cf

    SHA1

    2c3f391468746ffd855cda65faeeddb1a0da0ee9

    SHA256

    c5a83c29d9b2d4ed6ad7d7e68c12cc5ba09e16e0ce865f38cb66c656db09d77f

    SHA512

    c71959b2fd387ce6ff7e4c012e89ca3587186a5eb2f6b696354b28f0b72e5a9dfe74a75be7cc77b267e8af40a17602a5de2af50c2d11bb2e6bc473eb26515b66

    Download Submit

  • /data/data/com.gbwhatsapp3/no_backup/androidx.work.workdb-wal
    Filesize

    16KB

    MD5

    8ab20c2350f40d1914df8263a2dd1e2f

    SHA1

    ffdf8adb6f6387c7e75726e421b38786edeb21ce

    SHA256

    5438266a41dfd680b63c6f484b6734ab04acc4d801e94f10541252c49830df9c

    SHA512

    585e40ffd8de471b30017b4e0f5fa8556bbd7e5385ab4794dc37c56d5e0af9b051c17dac8e4caecf0d0805b8e80357ae529333fdd9e3f720c4a026de50be79cc

    Download Submit

  • /data/data/com.gbwhatsapp3/no_backup/androidx.work.workdb-wal
    Filesize

    112KB

    MD5

    e7893b7d45f9579ce222703b5eb26766

    SHA1

    cb1ba4a7834c113f2ed771ca52a6d13aca044b8b

    SHA256

    d2ba58a6a58c3f01ed87b4c1fe07a323b6f3a55af390ba55ef82872c2e40074e

    SHA512

    8275e45d30f3e3273b0df52017f186385ad10a073f9dcc959c905a1c5e67b84a3f92149dd1f41fc9491c68532dd81ea65ce40ea19af0e8f1b83f862d65d39625

    Download Submit

  • /data/data/com.gbwhatsapp3/no_backup/com.google.InstanceId.properties
    Filesize

    63B

    MD5

    dc8f8a16fc3bc3a354bda4e004901abd

    SHA1

    72d289a7cfd581aba238a9f0aab45feecef4d138

    SHA256

    fc74712fa1fc50f9fa97ee99519d9514c4907b11261904b6ea413160a2516d8f

    SHA512

    c54bf5bd85361edc3a4fb729dc4dc5ec7166b2743c1b11231208a52b97abba35534eea89b00d7d73f7986008eb111c505bbc9f89aab10b83229d3147f2700215

    Download Submit