e5c84f151b251099ee6baed3a03f4629d1fcb9bee106ef4c1059b6a3f01ea589

Analysis

max time kernel
47s
max time network
137s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
14/02/2024, 01:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

9bd71f1b80667e3c5f69ead1b6c675c37f3f06d82c95f60e0b178e0c05511485.apk
Size

81.3MB
MD5

46a418c662058baf6e7ac9fec58d2f63
SHA1

a7ebe70e8dfbf0c99244f26e48a019b68d3167ca
SHA256

9bd71f1b80667e3c5f69ead1b6c675c37f3f06d82c95f60e0b178e0c05511485
SHA512

9ae6110768a19ae19220efef665acd99096ddcd586709f65616f89639b97b9dedfac322db5267c2bee09d3f2f5f0276365528846f9fd6e6f1190bcd97838a304
SSDEEP

1572864:M8g6VR1HceM9rgIuRzPwpJnW1c4sgpavonzoBfDMVO:M2VR18enIWrEW+a9O

Score

6^/10

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.gbwhatsapp3

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.gbwhatsapp3

com.gbwhatsapp3
1⤵
- Acquires the wake lock
- Uses Crypto APIs (Might try to encrypt user data)
PID:4277

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.gbwhatsapp3/cache/SSLSessionCache/static.whatsapp.net.443

Filesize
5KB

MD5
9684e018dbbd83d8a76759d7391b0850

SHA1
e137c836cd9d01924bf4c1ce2a114817c9c29671

SHA256
c4e3cc96ee33933a2d5a80e53dd27b2b89b550c54fe40bd701249cfd6f0d2673

SHA512
c86c7bebe05629113747882e2a09168fda0b0c45b7e237e2dc97a11eb3a009224be895839fa7812d2d802416da4d21eb44967ba565babffef2994f81aa47126d

Download Submit
/data/data/com.gbwhatsapp3/cache/SSLSessionCache/static.whatsapp.net.443

Filesize
5KB

MD5
9ac596b56c7d8d7c14f54bbb6e67a4d8

SHA1
697ec0be1efb36924fefdef117e6f3319e8a3895

SHA256
f86e20d880f46fd38ef2a42c4745377b3f961fddc5fd6adf02fa06c1e1e5eaf0

SHA512
9d92cc7caf9ebb7793ef0c4158bd427005baac287a39feeccebdcb8aa8384962098b2dedbeee7eaf273ffed69c58e1fb760ee18a5bf1263d975c33b26fbb72bb

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/dark/00005DarkWallpaper.jpg

Filesize
3KB

MD5
73a86bf812966a7c6ad0be9e8bcc1a58

SHA1
0ce4bd31324d287ecd21d138063c9510dda452c8

SHA256
781e06e41a1020793c3c18a337443f367b544bd3b37adffaf733bf0ac80af128

SHA512
a61fe84fdd6e74aedd03e25c5f5af5fe628eaed4bab6ac226c1c65d142c3d23407f710f7ae31ed7d32db53d30fd2d5d2a7fc5910403eda15616bf13ac2012a63

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00002LightWallpaper.jpg

Filesize
10KB

MD5
676d050f5082a83d37ea086300b02779

SHA1
8f17f1d79ad47ca722a7d60c8e96c2bea0af590f

SHA256
39fb86c3c500835c134d3638e2473b66aa1e132665f700b84c0140829678fedc

SHA512
8b3aed029a22e22e63e8982def6133fc2f47649cb23b5605a55cba129b030bde7967dd21cb236efc1e5346826ec266b4ecd76b0a4b3af28d999e46805d52c70f

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00003LightWallpaper.jpg

Filesize
12KB

MD5
3bf0b92edf4db6604554828d983d154d

SHA1
86980ce01d87da26057e30e52f5967e5fb56271b

SHA256
707ef8a4b946419cd1c307a090c89924aaf1a5a72f4fc23c58e7a837a7efc566

SHA512
40162c0fa8ffd17446dd02209814444e6dc14e76983fd4045e3b56899788f350a0ef988e67c56a416504ab808d7d4dbbfda7e193a241424317e717e749908be6

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00004LightWallpaper.jpg

Filesize
17KB

MD5
2884bb703dee9e1a2090148de9428614

SHA1
2b4a6374df48b3ed96f820dd8127335bdb7d7b4f

SHA256
799102f8bdb7a2aab1a5997d87231fd0f7c150086bf0790b0a0afcbd4aecbe91

SHA512
869efcbc637680ab56f6180318843ed7280a5eb5e869474214c8db7902ea71f3304d6017b371214171854f9c8a1ec6b0ebca2256dab517117b98d84f4000ee01

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00005LightWallpaper.jpg

Filesize
8KB

MD5
ec13f0997826d11332e8929abafcad96

SHA1
f422170557dc8922eeb9ce1da77adfd8f6f16190

SHA256
546117cbab7a55d9ca98a684cebccc65ace2d953f9ed8cfc1d7670251fd9dab9

SHA512
e2a35639b9471e5cc10717cf609bc52283fdba0f311903b1ce2174660b9605f8d7c676b5672ace8221e55ad220553ed8bceeb37b52eeedab45e58cbbdf2204a7

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00006LightWallpaper.jpg

Filesize
26KB

MD5
0fc379931037bbd3faf17eaf50917bb6

SHA1
a0e6ba9c8053a8e99443115e4957df52734619b8

SHA256
7b3e377f7dd1ee2c41596f4e8e3ff874546ea3c06fdb89265e69f2944861abd0

SHA512
9828e44556a7f21cf2657bc622f4d48353c3e951a9dc73ffd05190e15b7cb017407790a3b2f6d10a9913db4490665890a9c369b38a3afca3d98f01fe6e61a73d

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00007LightWallpaper.jpg

Filesize
36KB

MD5
5478917f86f83638e0c2199fc8ee6c84

SHA1
39bae4da6cec4733cede64673a13a03bb79bb0ea

SHA256
833bd11f148d145dfdadba4fd8cedb0a2a125e1f4e10411e613f4a70de3ad2d0

SHA512
e8ce7068e926b7e0505a9612e93b6adfaf768e204362cc3dae8fd45637ca5d09e3c27b52b650588804cf383742f2099959a7a01dc62f3afd76d61f46c83dca2f

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00018LightWallpaper.jpg

Filesize
23KB

MD5
7f773558b21a74428c49154da6ed4799

SHA1
826e2c852398c1b96b4695fbcb35a3a83c824e02

SHA256
c84966910534b33b335303a7550f38db9825fd5eae9253998319308fd01a1963

SHA512
e0fe7fd942b178c14e79c3b0edef5c67d57e584b9391e26731afabd44609b4db6eb5f0644aca20622094b56c18e9a4d15def5da0e8fd94ab5d0c949f952ec01f

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00028LightWallpaper.jpg

Filesize
9KB

MD5
fb9b168a5224ad8ac79d0ac2a05da6da

SHA1
82852b2e992306121e31a81144cda8a1ac2f8e27

SHA256
8507e48d67270c95797a4d6fa9f244f773629e8e37477c3c72d0135d4410adb3

SHA512
b1fb8ee860f80516e025028f1f14209e380660c013dd9529abc1c728ee8b0b0c7c0a94db1c295bf42d676f8adc3b78a724454e403eb9d78014ec50465d449f54

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00030LightWallpaper.jpg

Filesize
25KB

MD5
e2822df83717e4c2b5d5275dbd641639

SHA1
a9900a5e52a4e4ed532d78afd648b39d59dd88d2

SHA256
9384f8760799d1d207946db885cf5dda68edc2f0491241acc724987efd711ff2

SHA512
36bc22c5b23f6a101c89fb03b6c061ff6cc4aeb734f8e4826b966939659c4a4a79c0fe3e27ae2bf88f7fe3114296fca449edfd0fed96986204996945ac2d84c1

Download Submit
/data/data/com.gbwhatsapp3/cache/downloadable/wallpaper_tmp/thumbnails/light/00032LightWallpaper.jpg

Filesize
13KB

MD5
3a364c7ee1762364a08c7e7ac65203b3

SHA1
968c78fa922dc711108d73172059cce640d9670e

SHA256
219d1a30740975a426bb187c57dafacf98e37e8c02fe3c07a7211c29ef78699f

SHA512
87d46d47c9af9ca7a23f0b2fe9d2f75665d8c774e0225bcb5386391c6e5b72e684b44dc1ebf4eb6468579db41e8f254718e37ccfc6d7f5e647550a5d366bbb2e

Download Submit
/data/data/com.gbwhatsapp3/cache/downloading-5518269685819877679.tmp

Filesize
48KB

MD5
b66d016b01deb8c481f339b0e6c0bef5

SHA1
62cd4520aebf4914eda5e03aa9888b3e67a637fd

SHA256
36fa4c68044523d55e90ef81abefd6280e31699b7dc26da2a1acc7dbfdf76ef4

SHA512
33c276203168c8294582a3da1a958fd63bbaa106938429d55e4de64db082513b26f4213b751a560b4126a0462ffafb69027840ce8401d8fed68226fb9c9e4eb3

Download Submit
/data/data/com.gbwhatsapp3/databases/BTOR.DB

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.gbwhatsapp3/databases/BTOR.DB-journal

Filesize
512B

MD5
fd21943267b7284a02788e29fd985cce

SHA1
722036efcd726a562fb007bf6fce1fbb8974a50f

SHA256
397290e1be32e02a5b6d0317f4a221237650084ed2962d87db4c94f185f66ef1

SHA512
0f238f3526932ad9e5d10d2ed8e9945b52f494fee9abba87453c7ec52e456e823d3e585f0d4b08ae963b7b3b92c5b2076dd6cbdf94e2c180c084a7c549a8579c

Download Submit
/data/data/com.gbwhatsapp3/databases/BTOR.DB-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.gbwhatsapp3/databases/BTOR.DB-wal

Filesize
32KB

MD5
470e2cbb64a6b5ff21ac5998b0710a03

SHA1
757a7440ce0c548e66a02fd7fecfabc7d2dfac41

SHA256
ec40be0e1efe7da448ed195dcce1926a4ec938f761697ab10968b30bb3a013f2

SHA512
6e6f16f53d811e389b3333c34544af55834370d8e34942cdf0d5695f17461aa94e78119044984206bfee8c45e8d8bde86a6190936f6c3e9b5685ce334c33137d

Download Submit
/data/data/com.gbwhatsapp3/databases/EHS.DB-journal

Filesize
512B

MD5
e5b0a0f39bace9894746fc84e10fe029

SHA1
47e042faa7bbde696d3bcd1418c62541ff724391

SHA256
f89c47b89f350b45c4bded5cf5a793032b46c3d537a68f2d8118f7498a6f1676

SHA512
f61511d17b2f87dde2fd0bc427124f5ff00e49775659ffdaeda5d9ea4688eae05de92405708dde27fbb058483bcc787024de530efd5689cf7d17e14ba3ccfe7c

Download Submit
/data/data/com.gbwhatsapp3/databases/EHS.DB-wal

Filesize
32KB

MD5
d36166cbaaf10d61429ccba068b9f47f

SHA1
16bdd3fb2b214fde122720494c33843e30b93cb5

SHA256
c8966b8230aec7908f080a61c5097677a7c61e40991e82b1830fb9b20e89d35e

SHA512
57e4ffde8b6aa42b7127e47569a3eb13625fd9321bb5dcb3aadf9171035b566d37a47701b456819c5e61b065493ffa0097e969e623d268c6ddd3106de7895afa

Download Submit
/data/data/com.gbwhatsapp3/databases/axolotl.db-wal

Filesize
100KB

MD5
1cdbe8bd1ee31f9f6b04f009cb669f1f

SHA1
a415bad766cd3c65db04572617fc6d822f35550d

SHA256
dbd47c6ad864716a5725e047d25c010ce351ff79945cec6d607005a6414f7f70

SHA512
5f210524e11b8f594e5d9a45e0538be15dd29b73f673b2a69bce440f16614f6a1cbe9d02f8ea6ca3ec69f73454f159dc05a1b5521975db68362fdd0e9a44d93f

Download Submit
/data/data/com.gbwhatsapp3/databases/stickers.db-journal

Filesize
512B

MD5
95eaba36b7f86b84bcb36fff5c902ce4

SHA1
3a799f50b3ec05d7e5b21d9e2a455639faa1069c

SHA256
3673c04a698b6c92f986aeaa29770589017fb9d7b38b179f8e614f13a6a3ce6a

SHA512
d8f02f73b773ac6f4fcb6bcc3ce4a5442c431fde459cb305724b227450c6c3588702d52235f8c146b7d0aa1aeaf3a9a5fdc9485876954678f0ef3b505d9bd803

Download Submit
/data/data/com.gbwhatsapp3/databases/stickers.db-wal

Filesize
16KB

MD5
fe3dc2faa69b4e012390e96206f0554d

SHA1
8bb80f180aa990abc3a5bc95ccfbedf91b4b952a

SHA256
93d497ac3fc662208499ffa385f4703b9d8793c0761972c584e36c439ec58328

SHA512
341ccdf48d8eb844221cb50203fd1041655c59a02716f28a9da08d7b44d329213b01fb1a202afe2f048e185636cc864c3fe5fc5886fa0d10660fe108cd2502f9

Download Submit
/data/data/com.gbwhatsapp3/databases/stickers.db-wal

Filesize
156KB

MD5
e19d923b0065eeb0b2f9f0d56758eb43

SHA1
615c7d36fd55f3ed966b0f66e561c4d70cac6ff2

SHA256
36526f6b0efacd0af0bcea328fd973f66e43509da4a266a71f98d2d41300b373

SHA512
9516ab8ccaf86b7780b05f31da9ebbb5528fac0e2f7c54be9cbab2c376bb51c77a67f3d24b5a07861c2e6462ea0319ef59ed49bf880a1543b8b2291c724f3472

Download Submit
/data/data/com.gbwhatsapp3/databases/sync.db-journal

Filesize
512B

MD5
cb515baaab86fdb3950596397b6db764

SHA1
0116ac16bb2882b52df33ed4ae6ecafc4b626724

SHA256
b9612368956b2f40e9a520ddbbd90ed50331b73e49a52e8c59d0bb06215a236c

SHA512
3173456000e23aba0fc7346a6e6aed5624e05b9cf0d6838497a4ef95c9e8bfaa8f8f3ec7f80eee4e4f123545f28a1e76000fa7c4fcf8ffd1c0060a82ea02f92d

Download Submit
/data/data/com.gbwhatsapp3/databases/sync.db-wal

Filesize
16KB

MD5
b537962c86b5b1fa0afadcc56d530d22

SHA1
570fbd47aba18476c93d43197f1c96667b4b452b

SHA256
e5637ceb02b8c22f89ce2f1bf0e05cc750e317c70eb1b6262592c92823514f1e

SHA512
727198a0a278ca9ca53cbb04c4fffac1ba761502e5fd323fddc9b88709af409659aeceb04d0401cd7adaae5acde2c142bd9d89c6997749b1e69e8cf7ade3fbde

Download Submit
/data/data/com.gbwhatsapp3/databases/wa.db-journal

Filesize
512B

MD5
e79fa44c478e817819da19e386c5bf20

SHA1
9f01462438425a9b82c209f2a26b7eb2aa417d79

SHA256
cbd1968d1c57fa2f197547cdd3e28b31f64fa79a2c1b8f13bef551debe7e1ef2

SHA512
2f2eff282322c087f0c97acfe7a327cef60250a863179fda7172dbad5550d0bc0ea8d721eccb4e9e1ea6eac8822eb9f100bf7a6ff3af8b8ccc56b0b8d1ee63e5

Download Submit
/data/data/com.gbwhatsapp3/databases/wa.db-wal

Filesize
16KB

MD5
8d52e383be3f7d2923426f9ba9da6b92

SHA1
d0f093a5a9338695f9674512432f64a66ed89fa1

SHA256
83318016ddff3267a22f7f63a2c78e4d42b4072a49e455cfb34a1c995d5d801c

SHA512
5961a62414f428a049b23a119009e55db4fa2848c8ec721032b5c26f8966693183e17e387b41debc493e0bda34dca334c68808b26c8b2e5adabe4e5d3452b96b

Download Submit
/data/data/com.gbwhatsapp3/databases/wa.db-wal

Filesize
390KB

MD5
66c19aa00d7f44dbb93dc890e6bfb5de

SHA1
5256e5bf45e959902d52fdf0e8f6577285d49443

SHA256
1eaa4d727f1e84899d8f4fee611c76d89a6103ce95bd7319cbeca382748718ad

SHA512
4784c4cbb25cd2108ea71c922696bf8e156e8bdf85c0a71a1b75ebb97a509e215a6e3fffd2d2e398df4edc8b032e90e160d83c4a289bd66fa317c8c461d69be4

Download Submit
/data/data/com.gbwhatsapp3/files/.trash/0d76a06b-4f0a-4e2c-afc6-a8ec2edf1f7a/6293b330-4f7e-488b-8aaa-7fd2b6362b27

Filesize
67B

MD5
d8141b97bb6b8752f676cba953de8e56

SHA1
b65fefc908682f7027ea3ca34ffd592a6d81ae87

SHA256
afff045ccff4a25dc9ed283acb206e37fbcdc6afd5adacc86c645d432e032a21

SHA512
98915af0eef59abcf116818f4398cbd5a0eaf31a65110422e186872f48aeb7400948d51d5b22b0ce82c07764f21dbcbf1e252bf5a49df0dea3951bda730092a3

Download Submit
/data/data/com.gbwhatsapp3/files/.trash/0d76a06b-4f0a-4e2c-afc6-a8ec2edf1f7a/6e6d7354-1649-41b0-9ebf-568d1eba1776

Filesize
526B

MD5
2c0f856d7250fb18c8dfe900ec9bd5d4

SHA1
10c62e9db2bdffd3d76829987e50d0efa5e0a72b

SHA256
62802cd5039ff363156f7d4dd4d7360d095090a6331131f018abba016b6e1aa6

SHA512
ef5d4481e27d2d6053a224f685b983e52d7ae0d2dbae4f349c1ed0191e4d5b737ce8e2f0d8a393f2384ff9bf05af29f47aea983d57d0b151e89b3cc8c6ef38e2

Download Submit
/data/data/com.gbwhatsapp3/files/decompressed/libs.spk.zst/libvlc.so

Filesize
3KB

MD5
cfaac46a9b3c925a53382f453c8c0d81

SHA1
8e82c86b6d77d7e1ef003aa7796b83ccc5efab7b

SHA256
0d87625993ef963e9bebf8f21f22525807d48dc26b3195fe94bedfe877f376e7

SHA512
22c8297645c4ffb8ba08e44e1136dcc3b3c16100ff837d7e3ae7bf3a1f181c12e9aa33f3f598d6d7e001536b9812106b4785c01f91a76874cd220a6229e787a2

Download Submit
/data/data/com.gbwhatsapp3/files/decompressed/libs.spk.zst/libwhatsapp.so

Filesize
3.7MB

MD5
e253098e5e57e033164913685d315774

SHA1
f201382d731af5df41b89561e279a6f0997a77b5

SHA256
0faf10195ada1499da7e88e5596e91c4d024562b4ebe5fd03e2338937c819364

SHA512
051f75b6feb141d3e3ce32eee01f9f5178686627217bfe0ef3a4f2fc08ed48f9cee05a5295732a4f1698b0cdcd701287534abbd887439ec01b3414cd041f402b

Download Submit
/data/data/com.gbwhatsapp3/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
8f882299d494b2c0973b1dcd13dec1c4

SHA1
fcedbc9b3583b7516555ab1c6196e73e58f7c51d

SHA256
9ae86697b5489c4f2f983ae242c8dee7261276a4a1e532f1b7f1ce8a4878463d

SHA512
b7cbd11551fd12c3fcb5e2b7b7bff8615638ee8c7c774237a1db85567751a15f435459c340b5da62c75b99bcbbb503ea99de8f09603ab2f1bfe98d175f943589

Download Submit
/data/data/com.gbwhatsapp3/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
c9277f36bb0bc2ee4341485d979f8276

SHA1
effec69652cd8172598ef5448fd753bdf87e7fa2

SHA256
5614f469716f9a2412fe73872698c220e5d91c0b028484d1820e891689d961c8

SHA512
c672923ed64aa449cdbc819f74ef1f4fde33f5be78a5d578ea51d7368865f80b1e3d601567de9e4fb6c2516ffde994154d51fe55ba6859281653ce414c32efe6

Download Submit
/data/data/com.gbwhatsapp3/no_backup/androidx.work.workdb-wal

Filesize
112KB

MD5
130750ae3b6067fa25a655043048a8af

SHA1
850aa78c3a0b1e2565569802ae918e7604690757

SHA256
da2268a6df5b9fed8629ad4e984e9d21aa82b427936eac72868e332fff74e2b9

SHA512
0a70e601d98b7d5492ebc55922c9aea8034f41ff0424114a25d745a20539d70638644917dff7307719e16dab70919c23f56bfc210775b3d3c9bc8adabd2bbf9b

Download Submit
/data/data/com.gbwhatsapp3/no_backup/com.google.InstanceId.properties

Filesize
63B

MD5
f3cc230a41ff1496c4e4071797547fa6

SHA1
f7e81e4f24a9321a5c271922986c685d978d915c

SHA256
4b40f1a845613de6f11100929d9b5240ba831ebf677624f9d7e3ddf6a3690e1a

SHA512
5a6095e8a85cea7fd292467ed51e13d4e0b15832cdd7ca6c36c9822cc4afd43b4afe209392963b5af700a439978f32716a46655bbdeb42d0079136fbca0d2c6a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads