730e4025bc0866ca4301659d7b0cacb6642a4d3203628546e075b46d2631ca75

Analysis

max time kernel
47s
max time network
136s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
14-02-2024 01:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

75f804d346dc48de24e447e262da09b75bb20405095bcee2ab2a775800158ef9.apk
Size

69.6MB
MD5

921ce55fa82f0025debcb7cb3cee27d8
SHA1

cca091918c4b55d00dda82221a198023aff27dd6
SHA256

75f804d346dc48de24e447e262da09b75bb20405095bcee2ab2a775800158ef9
SHA512

569a25d5c9488e1aef22f064d5f751cfb2cdf5aa2e56747759cb7fba17facc373d8e31577a25a8025e5b3ae9c884f3d9603e4db7abe99d1ed3af2ed3dc0ff8e0
SSDEEP

1572864:tHMbZg+KOS73QTXvmpQWACjrXS0CYZZW+jApvoG+oQP1o3N:tHmhKOS739QWAGXgYZZW1toGq9mN

Score

6^/10

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

com.fmwhatsapp

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.fmwhatsapp

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes:

com.fmwhatsapp

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.fmwhatsapp

com.fmwhatsapp
1⤵
- Acquires the wake lock
- Uses Crypto APIs (Might try to encrypt user data)
PID:4251

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.fmwhatsapp/cache/SSLSessionCache/static.whatsapp.net.443

Filesize
5KB

MD5
280aae0a0912ed470c4edd68cafb3116

SHA1
da579f5c2334730ee1b1fffa9d6a3da539f94137

SHA256
fb663b002de4c14e9a11d1576f8edc49f8e452b0e59af1f301bbfe6094af86dc

SHA512
34b1fb9222d984ca4dd46bdd9ac8f11f1ab1a34f8f4b70ef837efcdb1f6c87f6fca5ed7f5b72dad3351dd1cfb92098c14674f9ab457c870670c5f4eac212e5b7

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00001DarkWallpaper.jpg

Filesize
2KB

MD5
ce57f4a8a7f6f2afb35c86dbb8f1f7dd

SHA1
9ead9440c73f6cceb0175e15dac473c9fe56155f

SHA256
b541695affda1e92cac2e9bf5993adc6ebaf1d17055b4afd28261e4baddf155d

SHA512
eeae2160ed0b6616e4ead8e417890c537f4aeda4a082b60a3b0296b678c1bb8a7a6dbec7768e6c32e3b4fe3b253509af84f89681348160995bd63e81f3833563

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00004DarkWallpaper.jpg

Filesize
6KB

MD5
531bf200db3d162acfb510cde1e08bcf

SHA1
3955e0aa357e718115b71ef37689e299b8c53268

SHA256
ab6ca08e575bc7bacd96303fc021d8a1d666fafd52673876b776a5869f7f2593

SHA512
b1d5e429446c44aceb939ab512e2cfe06effb0547413633eac383e073b4816a8257fa200418607dfa4417ee81a04908adada5fe1c8759d605e9e9235e4d1eaa6

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00005DarkWallpaper.jpg

Filesize
3KB

MD5
73a86bf812966a7c6ad0be9e8bcc1a58

SHA1
0ce4bd31324d287ecd21d138063c9510dda452c8

SHA256
781e06e41a1020793c3c18a337443f367b544bd3b37adffaf733bf0ac80af128

SHA512
a61fe84fdd6e74aedd03e25c5f5af5fe628eaed4bab6ac226c1c65d142c3d23407f710f7ae31ed7d32db53d30fd2d5d2a7fc5910403eda15616bf13ac2012a63

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00010DarkWallpaper.jpg

Filesize
17KB

MD5
2dfd35c3f9fc6742b9df24d12afd5738

SHA1
13f3837eb51283197bd4fa3d7a0982811859fb8f

SHA256
d6f01d529ab392e652a5472e9386123bf248a1a4172db61faf99459d497cf67e

SHA512
c9543eb3f3860dd5a9b130271bf3b8363da616156fe5d95706b6114414e0774283888697f5c231e71739b7d3c5a149c4f99a6a6c85ac649308a4f2616e96f6c6

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00011DarkWallpaper.jpg

Filesize
6KB

MD5
170f7b8c27e89e69894c7424d8a51c0d

SHA1
1f04dc232acfed339125909c186c10edf4d2aaa8

SHA256
ad035e1d70649231fd3b1ee0b1ac649e27f1c373ec090858ef7b4e7b5d541c82

SHA512
782b4229599d03463307b0ef5ee9c66fcd1e26a797cd78bffc3558723437fd2c34ca0525fa685071cd18ca968c22b57a957f29839be83bc313fe5f5b0f74f793

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00013DarkWallpaper.jpg

Filesize
6KB

MD5
61ba8a773f3212786553d7a203372022

SHA1
c497c183838674b3ceba857e00a2b81324db898e

SHA256
671727713db9b196bd1ef3066f570c0d4150c29abce448b71343a4c345397820

SHA512
3feb62a5a1538ab147e1a41385304287cef5cb3c62079893147dfd964ab0b4f005b5474a45f46c756d976d525b24ef9095e23f662f62b69cf5519dfa9a4f3c51

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00014DarkWallpaper.jpg

Filesize
12KB

MD5
99d7c876c5afde27414be758e9f85075

SHA1
07056bf1036e046b5472ba67909925cbebc68483

SHA256
a7214acf1170feabbb3cbd1159df4ac622f95eaa47a5c654bcbb5e93702b5a02

SHA512
64a87dc5aff4913e4e06e7ba284b4848f73fdd32d5a37acc3b41805699c1e2a83b7942ec8b6ac20c5361e0c80bbc53cd6ca6e181ac7ae5e5612fc61a568b1495

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00015DarkWallpaper.jpg

Filesize
12KB

MD5
5c374bd37d678475fbef3b4b82f99c75

SHA1
32f6bcacc16ef1b9b32a2efde2667d805f0c5ca2

SHA256
2f2f54535a01b728246e04bde355f758f661aa4d6337143bfc5130784aaeef16

SHA512
7336a302194db2bec705ae8a900242f845b67caa1362848fd251134cbc7d730febb7cda9413bb84c90ed6512153c232fc42bc9533e00fd53e3cd40506831f270

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00020DarkWallpaper.jpg

Filesize
16KB

MD5
bdc10d3425f632648c9d64d93c7b6deb

SHA1
ba1a2c31d42cd9e385a05926122a163395d454d1

SHA256
3bf8f668c2de257590429e45d4014c0f036613948b48975aa10c5b648f2a2efc

SHA512
445af864483b3fea6e6f2bc7692a14fe1f144698e82b9d42fa3a45f59e1cceb55d14e860351fe0993f019d9ebd4dad463a2e4fe4846c76393bb8a4c4a69d7665

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00021DarkWallpaper.jpg

Filesize
7KB

MD5
ca90a8532eee74a4d3d2b990748e35e7

SHA1
52c411c8c343d3a291287c7bd136d6a268e7ebe6

SHA256
8bac2370e868c39f7e85f03b6cbbc331eca663739cd1633c43f9ca26a429c365

SHA512
38c9a65ffce5de259a5a20b86e4bf5fe35fff9fc4105d3d88ac13ecb95c89734f6e3f33a090056c0f03ba98bb961d34ae127f0094968fd379f2f58d93949661b

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00024DarkWallpaper.jpg

Filesize
11KB

MD5
06f21dec58fec12197f66b32d2b28f2a

SHA1
62e336fef1ea67f022e8722d232719d35e99a7ca

SHA256
da9ce86503b2ce777a93adf45e24809bf350e5512dd87419f44f9b5422643873

SHA512
abdc1f4c8c5652188a8d658b0fc22057a984cee74fcfd465ebc80c43bafecece476815a18995e0e1dfed3a7a62f4a6fcf048e0f19eeb2f85e93a0947a76d9218

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00025DarkWallpaper.jpg

Filesize
6KB

MD5
75d3c7a6be3fd5702ac07e98f4506732

SHA1
6042f37348754733b42031fec907ed80386942b0

SHA256
a6c4c3a84470aa63e07cabfc0d64aa0a1b74f4c71adf881197663a734b3a7dca

SHA512
df719c3d8c7035e2acd8bf355168eade847e7beb183d9282ba6af72b6b1e1b1abd9ad8fbebc341463bdd293fc1ba2129010fc060cf222c9b35e6c99c3bd5bc13

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00026DarkWallpaper.jpg

Filesize
8KB

MD5
ac6b93280a6876e6ea4099bc7b0e9aa4

SHA1
8e4cc8988a8d587a411f9e3155700c867879b491

SHA256
a81619be824e0001db6e0b9aa09fe7697c266c709cf9070807868144207fee1d

SHA512
f65326be86cdeace7ad97601c2ab62488062244b0a48a02f92711515783eeccea1130aa7352121a7815c10e0078146e60b4ddc5b1c91a3d4ffb8683fcc94cc0f

Download Submit
/data/data/com.fmwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00028LightWallpaper.jpg

Filesize
786B

MD5
a064dc0dd7ecae3e2f5e5c0560951c00

SHA1
45c21713826346729d8e69327dd5c853628f8cf6

SHA256
8ecb7a986e7c2d297905e86ea2825273a79ad0632f4f3db548aa890a195dd08f

SHA512
df6b28cd05f4ad92778f294674f9798ff73b4589cc8645774ea637d65b8068afd9564994962d835b3573cdcbbe5a55b6853b605a90371aadd9a5ddd180b12849

Download Submit
/data/data/com.fmwhatsapp/databases/BTOR.DB

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.fmwhatsapp/databases/BTOR.DB-journal

Filesize
512B

MD5
8b206ef96c895c23a14df85920b18102

SHA1
ecd7f1933a097358e21585be37d67b6707ca78c6

SHA256
5c6f613b5c156133dc36465eed7db791e1d5d584ddd1975907699057ced72991

SHA512
ea4f97e9616336c298245980d1e89177dd6488b4e703efc77bc33647ea934a7454f849e311c19bf00e922e4b8e2e1422699a9f9e98ae997a7400c9c9b28ccbb4

Download Submit
/data/data/com.fmwhatsapp/databases/BTOR.DB-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.fmwhatsapp/databases/BTOR.DB-wal

Filesize
32KB

MD5
cdfa27844974335ded5e337d0b4bdb4f

SHA1
52fd209f1be18c9b9f2edd765fe4919009fceb83

SHA256
be97e2302218dc251da0c515058303fa6940845d7ec7c3a473941ef855da8742

SHA512
be57179f09df860b6ac3ef4fde1a061f21ab683b18028d8e0856bce8af017990b56762863aa43d6eed881763555a7f8e01eb3b7b3bab5d2a7b843b57d682126d

Download Submit
/data/data/com.fmwhatsapp/databases/axolotl.db-journal

Filesize
512B

MD5
f9cead5f8b31c62c5d25edca3338afbe

SHA1
3307bbf92713ca06c10e4fb0ddee116b0ddbf183

SHA256
1da0fb3abc47fdf05ba6c2134c013e0acd256c539d864d1391d28d3e9ad5932c

SHA512
a7bbeaa5c4a4501e1cfa0a3f0c3a2948e3644305fb99aa3e1aedd362718c4827456eb3dcce74861ab88007309fabdc5ffdb77bbba6b002586d5d1c2029bc3944

Download Submit
/data/data/com.fmwhatsapp/databases/axolotl.db-wal

Filesize
16KB

MD5
19fcafb75569769dbcd907418fce02ff

SHA1
7aafc291518fc2895e40fe8ba19adc2eb32c70ab

SHA256
58758c7eac556cc487ca12801216c034b6379ef37d0008fcc0dbb053559e2e73

SHA512
334562ad10975955c976cf4137eded57d29a1bec944cb8e11e5d38829fba941f5baf9ea58c5b77cbdf6b49a96bd8c0d8fad093c5d1b1fbbf42667a5298db011c

Download Submit
/data/data/com.fmwhatsapp/databases/stickers.db-journal

Filesize
512B

MD5
a4123f4454269748ae22d0d65dbe5111

SHA1
48a5d836905f0e090c92519d0b5b37ccb9d5f289

SHA256
5e4a52c053de40878df3c56b34ac437cf3dcc257e6fefeed70dcc106f09d968e

SHA512
ae0f686a3777028b6153545d25b6d2f3ad929be59e7bb07b482b9acad6748dbe99222e10ee3c04c41eeb4134ad112a2e6fe84473939fa184b07a564ab348bd1c

Download Submit
/data/data/com.fmwhatsapp/databases/stickers.db-wal

Filesize
16KB

MD5
99cc99ae9b9449e1073c2df8a1cc8a70

SHA1
01372cbdb007ec159f49773ce5da7c691dfba22c

SHA256
c28f481974276e9637a06a3868ad03aede683fe61a8e1f597d7fe38e80ab0254

SHA512
aad655d9fd528d8c18c127644bcd4fe7b50331a9ee74d2dcf4d77a7897d9f4a1dd482bd84661f4beeddd4df443921b2b0b6d0fd395f4a22b6455dcee06b6f256

Download Submit
/data/data/com.fmwhatsapp/databases/sync.db-journal

Filesize
512B

MD5
efb3b066e9a1e5c253a3c00b36f3d402

SHA1
b9b924a79ada60a5d86549338d4c1ef2eb604aa2

SHA256
28b5a8b6349b6c64cdcac759df7914a5f9cd0e602c9083d6c029b292577723a5

SHA512
b903a3247249939cf91880cef1d82ce0f45a6e277d32bf76bca10cc45dd3cb757c99f51ad582e42ea05190b0d36efdfaca3521cd58c398cfd2264eaafbb22690

Download Submit
/data/data/com.fmwhatsapp/databases/sync.db-wal

Filesize
16KB

MD5
fa8ce34e6a81c91a246b38b8a8c5d32e

SHA1
7c0ca9191d50523e17be13ceda77f8d753897d2f

SHA256
b4871e292100e7269693e4dcfb7203bb1a6c711b601f4ab220bdf8afa8b0ddf8

SHA512
3c3467e58204eef4e2bbae84db4fdaacbf3dafadc63def748ae19d4465d7397091a6878e3e2789dec9842717ba26653f3ed4b2f7b9614074b8a03079af1391b6

Download Submit
/data/data/com.fmwhatsapp/databases/sync.db-wal

Filesize
116KB

MD5
71ac813fc9af1862cd506ab6c4dfb825

SHA1
d8da72181a83693fe7ceab6a94075d7d607c5ece

SHA256
7c0ad93babd6832f030f27062ecfed000651c57a21e78984b3ef0049b5116279

SHA512
a8a63d24b305d16836de53a5056526f6469f7d18a0132f2cb60e7b1cdf1c4e6c6f5cbcd619b9aec01d3dc3d97e2b575e3ae5deff8b2cc32c21ff1d6631bb9b43

Download Submit
/data/data/com.fmwhatsapp/databases/wa.db-wal

Filesize
16KB

MD5
54c4998f3a229b7f5063014c2d0287d1

SHA1
a4853de5f7999f7b550909348296f4a862ebd88e

SHA256
47f775f60c6ed0e6405cda0776186e299aa413c9d73b7f3855501e62047f6fe9

SHA512
099a66385f6b06a7caf8faba98bcc63857fcfd3404489a8332b43eccac1eeaf5c4fa5a6cf5fa0e61078a38adcce51b57166f9253caf5b66da6b6ebdbc55b42d7

Download Submit
/data/data/com.fmwhatsapp/files/.trash/88d8a525-fc06-49fc-96b4-e538ab1fb0cb/089c08fc-c2d3-47d6-8a92-ee67a5a6013f

Filesize
525B

MD5
ebff74bf4ac07227d64685dc148f9acd

SHA1
668123e04b2f24f0a9a5f80677996f87f7ee1dc3

SHA256
264b2b4e0cab3d8969065c105423702fc90ab7d6846963a55a09ba2a93286c33

SHA512
6d13a0089a6eb3eeb7fd23d53170055c1e971abf6c5a3a0b44a8c49e71b24f3b6198c8f393812139558a3c6177f239e292ef40e9fbbc6fb1d4c4330d528fb821

Download Submit
/data/data/com.fmwhatsapp/files/.trash/88d8a525-fc06-49fc-96b4-e538ab1fb0cb/c374604d-fc0f-46c4-a99e-5ff2bb45e320

Filesize
54B

MD5
97dec4b4b69533cb13191b08826be0e0

SHA1
a194f8263936c4b7a11dd3213f601942ed495a17

SHA256
e2af3308470a10914ffa9079428fde7867a960cbcb922d082a963089c49b75fe

SHA512
536974933de877e2468c4a15613a8a0f989bcc655768366a04901fcf03e3713f58dfc110f96c8cba9a4f335b73b50900dfd057729f058ac7cfc3f24c000f0a8a

Download Submit
/data/data/com.fmwhatsapp/files/decompressed/libs.spk.zst/libvlc.so

Filesize
21KB

MD5
47cc21921c1c4e305a946245a79bd15d

SHA1
37393692c44ae65de680b44775416705037e2f75

SHA256
c52dab197dc4650a02d7a4f39a6397e3bb03c9014b45d0651ac1f5b62b4016a7

SHA512
c4f3bb7e45ad9a5acea7fd58a2c40bbc72ab616aa55f4302b2cd9c508a33e1e42ff72c75bbd4f3fb7feb2145c15bbc6d64d6cfe0dcea42c1b3fc1e0db322da25

Download Submit
/data/data/com.fmwhatsapp/files/decompressed/libs.spk.zst/libwhatsapp.so

Filesize
3.6MB

MD5
c682222547ed417f496d80b6774225c4

SHA1
6295eb45feb58ad61e9c430383f6c350820463e5

SHA256
e7a381f90d59659f7a29b03c0e4b36517666e3d8b02e39a20904d01dcb4271f2

SHA512
498f12e9859708a5181f298d139c128cb4658bf341a944633ce82a0139cf06bc9104e6b777744dc106b8913d6423545511f76145ded92931205ca48eba0bd348

Download Submit
/data/data/com.fmwhatsapp/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
e05a2645e9900034384c19a64225b6bc

SHA1
0e93de6b37cee9ecf9a90da0497318039f83f70d

SHA256
aa78f75f96e2f98e699787518a4046ed99da8e3b515905ae8d4c40c5c3d02fe1

SHA512
0fc8aae824f73ed17837ed410636d696419222e6070593dc2713ed40100d58ab431f6a32cbe3de18025bfa3a883349293fe59fae0bc31bd9015256c256a283dc

Download Submit
/data/data/com.fmwhatsapp/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
ed04189bbc5fbb39c35247d19453e575

SHA1
9b60bc40a365176b15a8ec65e6a442bf7fe7376c

SHA256
ad43f617025da2ae8bed2abe427539d87a23310e9ec5c4d10c3d5bc4af0099b6

SHA512
1c461420886d694e00cb78271819233628d8f29f6e4a4a83ea6e17d80bc6455bc5dda1d7c21b3ac95d68886e03d3226f092771d339796e614e5a435b3687f7dc

Download Submit
/data/data/com.fmwhatsapp/no_backup/androidx.work.workdb-wal

Filesize
112KB

MD5
705cd55db0bfa32929d191ea386e4699

SHA1
f92431b3abb605238c26881246c6f3fe90cf6212

SHA256
2b1f5a58a3b2a1e2549afe7172f57bb6d4ace04773eee6e30e8eca74a344eb6f

SHA512
e17500523352df6d6faf041dda091580617ea703d26c6bea23e0277e3aa39123a772432893c74e0245ddbb3563d8a7d86ba24ed5a557f49584ce5f04732a20a1

Download Submit
/data/data/com.fmwhatsapp/no_backup/androidx.work.workdb-wal

Filesize
160KB

MD5
a8ed644aeb84671d9dbbf0ee891b78a5

SHA1
c1a6f68a80a851098377bab692a411ac8c8d4a30

SHA256
038e75d00736894d43768d038ed4a72654d0da2b96248860dd0a14b911d91bc3

SHA512
2bff49a0365dbdd504199955edbdeff1989447005a121dc9d50816fcb2ae5526bbc5070f18fdbeda2d5ec885d5b709778930d88abcfa9890bd24772108d30c27

Download Submit
/data/data/com.fmwhatsapp/no_backup/com.google.InstanceId.properties

Filesize
63B

MD5
7e6a7aae3d105b9676167edd20b00574

SHA1
b04215abed1bfdeac8cfa05cbd449684f3cf4a3c

SHA256
d6509738a19d846153b9049f23ef284cd416e1e01ff32ddf824042924dc1e600

SHA512
80373368e62a0a92e14fa5fe8e0fc17a5eccc01f8620435a7ca5694a5940810af0d5b652cf9cc96c2b552af33afdf3d1c9ffe141fd948b78ba6b4159643bc5f9

Download Submit