3e596694e6c74a1991490f4bde5e2404fc1b6d57af8499b7fc67adb44e17394e

Analysis

max time kernel
47s
max time network
130s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
13-02-2024 03:08

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3e596694e6c74a1991490f4bde5e2404fc1b6d57af8499b7fc67adb44e17394e.apk
Size

75.6MB
MD5

d73fa603bb7dfbd53f2ec4d05617b9e0
SHA1

86f18b9d0ce32f3ff1c608ae4317329e4da44e1d
SHA256

3e596694e6c74a1991490f4bde5e2404fc1b6d57af8499b7fc67adb44e17394e
SHA512

4e004ec348e58f8229d1e3b5d2137b64dc09234d355425d8fa5544e67a4d4d80d3e098c2ba7bd5659e443050bae7a404e1a35a2341cd6809b5e83e1078d8bbc2
SSDEEP

1572864:2R4YowDIMNvpPjEYr3V1c4sQ0MmDKPwpJ4qHSXKTHcvmM0hV:26YoEXEqFR0rDG0THSmZV

Score

6^/10

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

com.gbwhatsapp

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.gbwhatsapp

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes:

com.gbwhatsapp

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.gbwhatsapp

com.gbwhatsapp
1⤵
- Acquires the wake lock
- Uses Crypto APIs (Might try to encrypt user data)
PID:4289

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.gbwhatsapp/cache/SSLSessionCache/static.whatsapp.net.443

Filesize
5KB

MD5
85e6820ccdf984f342d9798633f84df9

SHA1
eb9db933990e1a0fc667c6a298f7be09db3db4ed

SHA256
278f3ef1cbeb2f2845881267d3f2d31203e6be594f6e871c21f7561d33365d23

SHA512
221bb8a506001248d3abafd93450fc53298a382a8d575c20d67917d51fe74fea8f3c2369d9ec06bfb51b838e030c70273674b5050dfa44b6de44e7015d6d7856

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00005DarkWallpaper.jpg

Filesize
3KB

MD5
73a86bf812966a7c6ad0be9e8bcc1a58

SHA1
0ce4bd31324d287ecd21d138063c9510dda452c8

SHA256
781e06e41a1020793c3c18a337443f367b544bd3b37adffaf733bf0ac80af128

SHA512
a61fe84fdd6e74aedd03e25c5f5af5fe628eaed4bab6ac226c1c65d142c3d23407f710f7ae31ed7d32db53d30fd2d5d2a7fc5910403eda15616bf13ac2012a63

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00011DarkWallpaper.jpg

Filesize
6KB

MD5
170f7b8c27e89e69894c7424d8a51c0d

SHA1
1f04dc232acfed339125909c186c10edf4d2aaa8

SHA256
ad035e1d70649231fd3b1ee0b1ac649e27f1c373ec090858ef7b4e7b5d541c82

SHA512
782b4229599d03463307b0ef5ee9c66fcd1e26a797cd78bffc3558723437fd2c34ca0525fa685071cd18ca968c22b57a957f29839be83bc313fe5f5b0f74f793

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00015DarkWallpaper.jpg

Filesize
12KB

MD5
5c374bd37d678475fbef3b4b82f99c75

SHA1
32f6bcacc16ef1b9b32a2efde2667d805f0c5ca2

SHA256
2f2f54535a01b728246e04bde355f758f661aa4d6337143bfc5130784aaeef16

SHA512
7336a302194db2bec705ae8a900242f845b67caa1362848fd251134cbc7d730febb7cda9413bb84c90ed6512153c232fc42bc9533e00fd53e3cd40506831f270

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00020DarkWallpaper.jpg

Filesize
16KB

MD5
bdc10d3425f632648c9d64d93c7b6deb

SHA1
ba1a2c31d42cd9e385a05926122a163395d454d1

SHA256
3bf8f668c2de257590429e45d4014c0f036613948b48975aa10c5b648f2a2efc

SHA512
445af864483b3fea6e6f2bc7692a14fe1f144698e82b9d42fa3a45f59e1cceb55d14e860351fe0993f019d9ebd4dad463a2e4fe4846c76393bb8a4c4a69d7665

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00024DarkWallpaper.jpg

Filesize
11KB

MD5
06f21dec58fec12197f66b32d2b28f2a

SHA1
62e336fef1ea67f022e8722d232719d35e99a7ca

SHA256
da9ce86503b2ce777a93adf45e24809bf350e5512dd87419f44f9b5422643873

SHA512
abdc1f4c8c5652188a8d658b0fc22057a984cee74fcfd465ebc80c43bafecece476815a18995e0e1dfed3a7a62f4a6fcf048e0f19eeb2f85e93a0947a76d9218

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00001LightWallpaper.jpg

Filesize
10KB

MD5
931de8d191c8caf8445d5667dd76787d

SHA1
b42d194ef8b45aba37caecdcb501eb6765a55557

SHA256
a515e8de501e935fe3e8d77d9fb9572ffbc011760a349c2c5efe5c89df350130

SHA512
7e4603d203652329f943597a95f2f6efdc4e48029086887b5701ed0fdfd6c521a47a3971b0b09a90d8fca98acd62ddb9fdac48bcf5fb69d15f94e68067f2b4e9

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00004LightWallpaper.jpg

Filesize
18KB

MD5
3b42c4d2ec86906a21443a33167617cb

SHA1
ca6add9834290605034fadfb33c51d41f55e4847

SHA256
f56b072e6ad0fcce9bfc1672813e26c61633173b855a77d1be7306e85adeb1bb

SHA512
2d6b7ce88b2c419bb4f6822e69fa42189698b8934acdad5d7e2ab9ca5e32045af01d1804fb4a38410caabcad8b078365a06a79ece0724785b018a6fdf8127fcd

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00005LightWallpaper.jpg

Filesize
533B

MD5
3b3873100e8bc2c3c48e47c573313225

SHA1
8e7683163b00f72767b0cd5c4b8870e2deb8363b

SHA256
5a4c67d20613f036f6975d0575f19c080750aa26ef024d08bb134e2b6b46936a

SHA512
335a39a697c8a9967160555b3c07ef616d2f34536ffcd89e712238241129db3c4ddad2f67e2f489d3e86aab345b930810225e6313aa1e84674bd54241a9a2f2b

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00019LightWallpaper.jpg

Filesize
5KB

MD5
69fc890a8b8f761810e1f093d41850a1

SHA1
5f798f5335c7bd74e7900d17841cb029d0160e19

SHA256
ae50a31de935c8d64278a0eb634597b7c900c7c291786f2a39db6f6b624734b1

SHA512
cd41cbeb960393d95634f29db90beb5f6a9cdedcc398c05bf6d5f1481f8c8e5cd7f6b75d62fb9c28a8f2e3b92fa5f79a72b58d3c5b09c64ea4777e9d546c631a

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00028LightWallpaper.jpg

Filesize
9KB

MD5
fb9b168a5224ad8ac79d0ac2a05da6da

SHA1
82852b2e992306121e31a81144cda8a1ac2f8e27

SHA256
8507e48d67270c95797a4d6fa9f244f773629e8e37477c3c72d0135d4410adb3

SHA512
b1fb8ee860f80516e025028f1f14209e380660c013dd9529abc1c728ee8b0b0c7c0a94db1c295bf42d676f8adc3b78a724454e403eb9d78014ec50465d449f54

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00029LightWallpaper.jpg

Filesize
16KB

MD5
44ccacc7026902851fe53f1e62be3101

SHA1
bef9493722e9d8c66fcd5f3a12742170d1051e93

SHA256
7b116f80bf126eeca680f6a9ccc6ff0a94cb8e88440988be15bafbaaaf022b9f

SHA512
bc9e5b4b0c9ffc9130e102a6c59d2fa2724f2cf71a3a036da5f4acae291e3366900764bc45849c553610e259c7626f67fd9042fbb31af37c8cea327c332e26bf

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00030LightWallpaper.jpg

Filesize
8KB

MD5
f5cb88d779500ea0f9d732d00aa0775a

SHA1
c03b8e93c4ae95f7c0a9f0fed6f0125cbc7e5e11

SHA256
0acb38c670497dd5f79c1225faca6fe9069066b504eadf1884c85d51ef731b77

SHA512
4eff1ca74c26ef7d27005a756a75c81e96050b9d63b9c845ce1f41d00d1af8cb6ebb4967179b3bfe6f5485d3418a9f4cda8b4d9c56a8f06a9d23bc8b4055dbe3

Download Submit
/data/data/com.gbwhatsapp/databases/BTOR.DB

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.gbwhatsapp/databases/BTOR.DB-journal

Filesize
512B

MD5
9cdc023f40885955f662d54123f0e851

SHA1
f5fa39d178c61649f96bfcff8c6bcc37106ca35d

SHA256
e87d92c2af5e14558d3cd5cfc0f45d056529abcb542c62155264f3ab4ff5915c

SHA512
60f8a03b3c45822e0c00981747e0f02a397eaac6e2b484fa12ec3c2f7365113e453ec5beab4df19dd3cc7e2ad72e63fd20bef8771d56b9b323b12f8161513905

Download Submit
/data/data/com.gbwhatsapp/databases/BTOR.DB-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.gbwhatsapp/databases/BTOR.DB-wal

Filesize
32KB

MD5
7e217dc247dc8405a2ff390c5b2ff09a

SHA1
ecfa40532ffa1f965f2e153be3e52a48ab96c5a3

SHA256
3fa44b62d3db002e6fd08d765f32a4672f37a37677cbf2caa08bebc6171f217c

SHA512
14cd27efd7957036071b18e516d9114b36e1d96d93a5e1ec69056d87cc59ce790dd867f81192f84935aa68e3ec9badab0d99c3425fb0c9dc7aca285a8c08a7a6

Download Submit
/data/data/com.gbwhatsapp/databases/EHS.DB-journal

Filesize
512B

MD5
0941c2f89f8baa5248e3879802f1ad45

SHA1
fbf49563c704863ec36bf10ae236a50d3f6eb308

SHA256
65ec3ddf4640b5ecad1a9fb6484123cb1cc3495e921d5fae5b3b13a672db5e85

SHA512
c2d1a67ed77e59cc8819b81d2afd3e5cfcb9f553c0adf0710f3d483466c2574dfb08ddea409868169b17cdb8b540701999c0c5e3d5d6fa74cc4b4073e3890768

Download Submit
/data/data/com.gbwhatsapp/databases/EHS.DB-wal

Filesize
32KB

MD5
c56531dc98315a927619a8a3a6309113

SHA1
c6663e62c8c34123f92107b6e7319251f5aa0ad2

SHA256
5421f504c0de109f607631c20b9da7e74dc0ba7606f51d144b788e04957324c8

SHA512
17cc801e6527915f05b010530f7887651c07b701ab7faa6593b34b4a44ad313cdbb311be7bdc066a14084cef47c6632626c03bd5bd836ad455a4d7c76c05431d

Download Submit
/data/data/com.gbwhatsapp/databases/stickers.db-journal

Filesize
512B

MD5
4b69c74d8e9a1ddddf31d819d5deef46

SHA1
d0f6368aa54c7a8893fc3aac6b31e180f69e0484

SHA256
7029b3d6859362354b26ba1b2308bb9523017c469af8d1d01181aa67447d56a0

SHA512
048b56d2653ab614eb1eca319202cc756a8a031b0d88f71c20f920111cc30388985036a92de8cc57ca0a196f440dc65da25db21ecfaa3ad750c8f61e4d47783d

Download Submit
/data/data/com.gbwhatsapp/databases/stickers.db-wal

Filesize
16KB

MD5
0834280b79dd41f21ff5d8e97da9f511

SHA1
5c17242cd6499f4c6366965bb9c0237f02e83ba0

SHA256
3cc3301fa2c2b9e0b108ec0d4014ad9a635a7d1b832673843fd5d0dd08d1865c

SHA512
bd45a500c56eecc5ac93a0c3581cc6aaad348b258fb63f0286728fd2fc3a55cbf1ec2c55d309629c5582bedd93950e131f46e5c272e36e58f25755db6dfc0589

Download Submit
/data/data/com.gbwhatsapp/databases/sync.db-journal

Filesize
512B

MD5
94a38f77b89df9d0a0bc7a6fbf950c2c

SHA1
9ee2cb4577959ee1eb2bdec1eb25ae76f54cc91c

SHA256
2b5fe2d627b21a3dafac6681b01218c6737a3ce17618325417a49b7ccf7e6cbb

SHA512
a61c2f9fad42b885d09316045a329e771f2b71fae0fef19616609538e60e3aaea9184b737bac2eb2700f1b5d44a760ff29dbf8464af796d1d28ce4b060997f78

Download Submit
/data/data/com.gbwhatsapp/databases/wa.db-journal

Filesize
512B

MD5
589e68bfe72cbd3d38f49babcb1cb1ff

SHA1
4bc0f261eeb5c14d7aae1eb2a70e00ec3c39c69e

SHA256
7e158409a6eb1c229dbf78164925d61ff1110349328dd9f450c2c23b85185ce2

SHA512
961240216ddc3213018bf241b05dad8c260e45d3eff081231cb5e540b8d3ea319f02d94dcc9296097a12840fd1ea71836e71e4afabdd78891f6a55406741031f

Download Submit
/data/data/com.gbwhatsapp/databases/wa.db-wal

Filesize
16KB

MD5
99c063d2a40ae21a4f17c941c36de391

SHA1
17ec2ae521f2c17012496202e265c839c7e9decf

SHA256
0d8659de4a511ca618269c1ac3137a6d36fe93ea667611e618060cf0cb9a2445

SHA512
fe967372705a5fbf0970a78097c174a15ff4e47b34c1995cecf06332febae70326a59a81b3cfbd5002dfdd74b8e4accefb96fce0d00861b4a1f15dce4f40baf8

Download Submit
/data/data/com.gbwhatsapp/files/.trash/dea1aa7b-d59a-4357-9f6a-ae5f6bac4b59/5e4019d8-cefe-4271-aa7e-e7a9f60c2607

Filesize
67B

MD5
d8141b97bb6b8752f676cba953de8e56

SHA1
b65fefc908682f7027ea3ca34ffd592a6d81ae87

SHA256
afff045ccff4a25dc9ed283acb206e37fbcdc6afd5adacc86c645d432e032a21

SHA512
98915af0eef59abcf116818f4398cbd5a0eaf31a65110422e186872f48aeb7400948d51d5b22b0ce82c07764f21dbcbf1e252bf5a49df0dea3951bda730092a3

Download Submit
/data/data/com.gbwhatsapp/files/.trash/dea1aa7b-d59a-4357-9f6a-ae5f6bac4b59/fdeefd11-f389-4f64-8ea4-fcae3ff2f6b8

Filesize
526B

MD5
2c0f856d7250fb18c8dfe900ec9bd5d4

SHA1
10c62e9db2bdffd3d76829987e50d0efa5e0a72b

SHA256
62802cd5039ff363156f7d4dd4d7360d095090a6331131f018abba016b6e1aa6

SHA512
ef5d4481e27d2d6053a224f685b983e52d7ae0d2dbae4f349c1ed0191e4d5b737ce8e2f0d8a393f2384ff9bf05af29f47aea983d57d0b151e89b3cc8c6ef38e2

Download Submit
/data/data/com.gbwhatsapp/files/decompressed/libs.spk.zst/libvlc.so

Filesize
3KB

MD5
cfaac46a9b3c925a53382f453c8c0d81

SHA1
8e82c86b6d77d7e1ef003aa7796b83ccc5efab7b

SHA256
0d87625993ef963e9bebf8f21f22525807d48dc26b3195fe94bedfe877f376e7

SHA512
22c8297645c4ffb8ba08e44e1136dcc3b3c16100ff837d7e3ae7bf3a1f181c12e9aa33f3f598d6d7e001536b9812106b4785c01f91a76874cd220a6229e787a2

Download Submit
/data/data/com.gbwhatsapp/files/decompressed/libs.spk.zst/libwhatsapp.so

Filesize
68KB

MD5
265d2842a970f165e2e34465da554c82

SHA1
6fb63f41e1f194d1d7b72552407267a5a4558ed3

SHA256
383b9c5c100aa37f4bd8923cfb72e110e35844f3b22a7a98318de02f11f8bc9e

SHA512
6bba1752afeeb25c86ac3742fdac97f91e0f72c17a788a03d1670cfde1fe4b832a0a0c259004e756f42a1bbd500d4780080ac788b0e1b7366706973ccf713f3a

Download Submit
/data/data/com.gbwhatsapp/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
2e1a5a2bd82dd9e0b043cfdc01547e64

SHA1
bde2f75411afc5e3f9e25c9593df6ad698373cff

SHA256
01c768a337b3d8fb8b7da00399a179e796dd4b46c287209f3556d79ac8fd4a85

SHA512
b06e07a96c58d8d35f63caadedf76827c08529e9c306aaab12d851b40c2467586788977638c91b8f8b6e6d0e86437bff15e0d2beb2fa1f8ff52eec652a685ed7

Download Submit
/data/data/com.gbwhatsapp/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
6c65963b38299c553f6c8a1bc73901fe

SHA1
571c5250d5e19107fc10da0ab459475edc60c96b

SHA256
236be0625b50d49116a42a6e4a1fe42abf838cd243ec3513f99dd10ff5811a96

SHA512
ce1b92803923575330d6526f91a258ea129169676ee288bdb00dc4de20003af53800d4ceea7d3b824e1bd900a7cc2008e0a4b86e43c00b143c60a9cb5c900c8c

Download Submit
/data/data/com.gbwhatsapp/no_backup/com.google.InstanceId.properties

Filesize
63B

MD5
380d27877d5a21ff10c539815316c20b

SHA1
d5e450e228b6dc058e2d4ba56f5f94fc875afd73

SHA256
d019e80c290395984f8ae9d9bca1cb6cdea080080d459ab5c2349cd7cdb9fa00

SHA512
eb52fa7293502105956bab68e8c821999d8e7bfc2b2bbe48419c4c9e1ed3900ca17724d5cf71310f7edd425766685c62d260f971b42b9c9f8253cbedcdd410c6

Download Submit