bd40c5bde39838fc593aee6560706c38178bc6765408cc88e676e942ba78df6c

Analysis

max time kernel
47s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
19/02/2024, 19:28

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

uptodown-com.activision.callofduty.warzone.apk
Size

6.2MB
MD5

3b918bcf21219ce96b3cd598259d58ec
SHA1

ab852bb514cba45c4311af83d2b51627e87649b0
SHA256

bd40c5bde39838fc593aee6560706c38178bc6765408cc88e676e942ba78df6c
SHA512

3dc5aa1b20aa529be64c3d5715b1dbdecde400265a509ab9c34f4eded51491c5acacfb06e5c7b52077e67546a46111d9e1ab7e05e82526290bd83887de29b4db
SSDEEP

98304:xzrMdaF3kRVY0rPGcnvTllA3GzfakGjOgCciqTnrXr/lPi:xzq/3GOTllAHE0/lPi

Score

8^/10

banker evasion

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 IoCs

banker

description	ioc	Process
Framework service call	android.content.pm.IPackageManager.getInstalledApplications	com.uptodown

Loads dropped Dex/Jar 2 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/system_ext/framework/androidx.window.sidecar.jar	4592	com.uptodown
/system_ext/framework/androidx.window.sidecar.jar	4592	com.uptodown

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.uptodown

Checks the presence of a debugger
evasion

com.uptodown
1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
- Loads dropped Dex/Jar
- Acquires the wake lock
PID:4592

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.uptodown/databases/Uptodown.db-journal

Filesize
512B

MD5
b92a41f71a106cbe421c09cd13230ef9

SHA1
0e3d9d0e9f7369e07585d79e0f1af7ff813448e1

SHA256
5d6ad7a11e665efa1e93062c72c7bd8812c7b97a0e0cb0382832c209f9816980

SHA512
b79818d5d7013fb33deab75d6c118dd7c0f4c3dc4efc21b5624963154b2f8620495fb45e2a46ee02a1e0d6bbf470f902f2bf2fb14fd536e6a23b51445f2ef5dd

Download Submit
/data/data/com.uptodown/databases/Uptodown.db-journal

Filesize
8KB

MD5
082225fa55202ea3eb69734914e4a84c

SHA1
1c80d18d37f50d7e580428061feab0c0e18cae6f

SHA256
10bdfaed51ed5c449d5f9c77912d30c789873ec06e3effc14e8556f9ad7173b7

SHA512
d3e9b7a61d0bd590f056096568ef9437fc71ab644a7bf661328033cd06567b78d5d891070b892c00e2b9320a3a26f9c269c01abbd9b3122b718019f898a315d1

Download Submit
/data/data/com.uptodown/databases/Uptodown.db-journal

Filesize
8KB

MD5
ef30a1622e59fb2960f3ad6a2d1bd7b6

SHA1
cd8a1159d9c9cbf6b6c74b579aa0105b36a51148

SHA256
56734c185eec9d7b80f3f799fff636fd1e2c8e8e68964951c4902e8cb9c5eab5

SHA512
616b69344cd78b3ce5b55f9afb31dbe31aea6aa9554be11a2b7a3afabc450ac42b8a766c27aa51027d6987db4b4d57e7db71a874a8ff0478f8d5fb72a592f668

Download Submit
/data/data/com.uptodown/databases/com.google.android.datatransport.events

Filesize
12KB

MD5
171aedf968e17a2744d2585715606cb9

SHA1
bbeddeb3b89fcf809619c35b4a318a80e7d5b029

SHA256
d2ab452d9360848f46af866b870b5c6fc98230b09c72b89cb1a4b2778586678e

SHA512
78a0f517ee3d21c153dda6dbfec4187ebaee9d520d7b1b63f358bcb125d08aea53f26943907a56fdeba40161d9fc7e4fd63f9ae3154dd2ad887ba0162738285b

Download Submit
/data/data/com.uptodown/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
0cf8da382d18b5d21316286dfddce39a

SHA1
77c23f87885ee3e3f4cec3383fd25be463cba5d2

SHA256
bf6f52dba2fe9ebc3271727e51a6e9e1a282a83894197430192b407161172f31

SHA512
a2db60485f054d904d7f5d4abfdabe1e70208dda72c41efa77177d37eb489030ae4c5c14d2f92f24288f318861a2ff1b550443f31a8cace294810163a1441a1c

Download Submit
/data/data/com.uptodown/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
2074837e7b42a8977f60659ea5ec2fa8

SHA1
feb8ebf39106a023e112db7e56987f0866912188

SHA256
9432d436ab1687aaa9b1d6dfcda671fd2f23f7ac1c3bfa3641f89f2904770873

SHA512
a61421a777c84856b621cbf7c616ec7ded76d8539150f313e2d3b702032bab38ae636436021145e47ad803720d68e5c7a6996462f1290243281da310581a1989

Download Submit
/data/data/com.uptodown/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
1215050e128a04e185811fccc7e6c2f1

SHA1
b6fcaddf611986781132339009ca31774b5df208

SHA256
bdecf470921a42f414fded40447f14260d4426f71a7cc45221158613256c8d00

SHA512
0bb1705679cbfdfa7687c91a2d6cc48c8559f42d31fcd90cb8405c9f7a380a070b9cc84b64129c83c03ea63d572b61cac8e24ef572f41ea6fa50613a555c29b7

Download Submit
/data/data/com.uptodown/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8ccc942684919352e4b6f0ae58278981

SHA1
71ab612506d5b88789e225e5e107cca094faee29

SHA256
4649aa88063be6748d253b29da43f9fd32aec7bdfdebcbf2d34eda52edf89c8f

SHA512
2b3f8f7d814908031551ddab3459d0df730d125d59d6ffb4ceb7333e216d9e4de168271c2b35f57baf310c675f852671079652b6d0e7068f5fd2ffbba30eba20

Download Submit
/data/data/com.uptodown/databases/google_app_measurement_local.db

Filesize
12KB

MD5
4f60c759a79cdad77f15a9b03fc8219b

SHA1
edc6af5cfd58aeee20c93f77e78539931d1b2d66

SHA256
51b5c99ad29d855e9de0c049ad71bd21f2afedc25c496c24142739b8babb59f2

SHA512
6bf35c5dac4eefae4bee7d1231b83bf59bc10cc5af1717d2d33e93e25dd8fb9ba132b22b2c257d1f44abb820095e3c16c9c355c4aedf0cc6dbfe304bf6ffbc02

Download Submit
/data/data/com.uptodown/databases/google_app_measurement_local.db

Filesize
16KB

MD5
fd1ec63936d98cfbb263c86c62b0c302

SHA1
5fd39b0fa26f36b88611ece35b465a56d4d0d3f4

SHA256
98f86e4e765f2001230ca8a0935b9b5c03578568bf1a3e70c98073c25f3f0235

SHA512
d135b4d36bb0af243cfb4ecc6083de938e3404509add36a366e289627153e05a69e8814f5a2a6e436eb7e9d3d5783f412e37211691aa3e09d4420db66d33a02c

Download Submit
/data/data/com.uptodown/databases/google_app_measurement_local.db

Filesize
16KB

MD5
430dcb7c730180b1e8a4d9626dc84a80

SHA1
54e7b4007d0d61cbcb251be23f2e83d682d2d081

SHA256
0535000c0c00089dba188b7677565350ff9714ad91515fe7c6844ca73037c3d4

SHA512
1b17cb24af4d540aae764d58d9c5cea69e5078e76fab00c517060317b4107817e867a897d269ee4430c30bb1a01043abb1610ac2c1c880f4ef03c3c36399f836

Download Submit
/data/data/com.uptodown/files/.com.google.firebase.crashlytics.files.v2:com.uptodown/com.crashlytics.settings.json

Filesize
708B

MD5
8d9e10b84147d01ced64d13900beeafc

SHA1
c4f0af0d8af681eab44080138d6b7c423ec21070

SHA256
32d22510e4f258551247f5133c52802ebf21fccb63003e231690fdee7708d681

SHA512
555698bb0fb44049ab5be66e0317b634dd21b6c26c38870ef6a5442d4f3d7c87fe336d320fdd3c0624c58fb1ae10ee502c2c36ecdb7292155dcc365dfb753e78

Download Submit
/data/data/com.uptodown/files/.com.google.firebase.crashlytics.files.v2:com.uptodown/open-sessions/65D3AC2F0097000111F029336CF52D26/report

Filesize
786B

MD5
d2b9328017bbf7ef7f3e79dfe086f358

SHA1
d4cb947782e9db2d971ac3d0eab8a3bc498f243b

SHA256
30fc82de148dfaf3bafd428fdbb0f9df83f4b199e9f1534e7b2c7af98428d690

SHA512
f68e6ea83ed93395cb35a2c70bc22f7be103cf527f1171f35a9bb5a619ebe8f7c3165206c6ca433b3acace13b3b5eab24760f2d69e3f62437685f46a6dabd029

Download Submit
/data/data/com.uptodown/files/.com.google.firebase.crashlytics.files.v2:com.uptodown/open-sessions/65D3AC2F0097000111F029336CF52D26/userlog.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/com.uptodown/files/PersistedInstallation3328376746400677103tmp

Filesize
90B

MD5
95079ad24c855c6e8ca753fe2d96b1c7

SHA1
139b3a04e0765c7bba1dcdb2f2599a526dadf3d4

SHA256
8e20cbddfd7a7afdcc2553c82569f3826ada70ed2b18f6b02384b42cff41f0db

SHA512
35a5f2590daab02e9f80d9d329ad09da97e60ea252781be4e3d941d7dd5738a7f69a284e3a44276aa04c3971c75b727660fb118c0d21a7ca1a19a3f53162f7e6

Download Submit
/data/data/com.uptodown/files/PersistedInstallation4968285868424094877tmp

Filesize
568B

MD5
d371d50168e1774aa05e3f1610d4ac7b

SHA1
da67288df3a6d56848ec9fabec01aea0123cf115

SHA256
9dd7ea14fffe35dc85482214fb658d973f844bb359e7a18d213298cf4aa3fb20

SHA512
8727f16b46425f066df9ccda4ea174d56641f0898ef9dbdbf78f1a4ed2a92d972c01470410f7510ffa63f8623273be1d8f59f471d6f3cf64056f38c0a3429b00

Download Submit
/data/data/com.uptodown/files/datastore/firebase_session_settings.preferences_pb.tmp

Filesize
33B

MD5
35b51faac8b5af3886e70bb5a885dab1

SHA1
e6cb282da46cd4bf113e25c8573268578dcd11b6

SHA256
af5b3362ec35985974c6b73eeba53e5063861f2491252d61d8cd42168aa5ed6b

SHA512
6ad5e9766cc03a4436e1440b9e47c44da6c6440a3c94b1cc988f8c5680043cde6f7b7e02b2b4c71b25df4209c39ed099fb65fdde02a9f09464609a1abe6af8fa

Download Submit
/data/data/com.uptodown/files/datastore/firebase_session_settings.preferences_pb.tmp

Filesize
75B

MD5
944e6a5a08cb971370c65c06061f0ab4

SHA1
84d47725cc29bf167b782c702575bce4bf2ecc5b

SHA256
ba8f4af0e35f93cc15649f4c51969f5279421fc12deeafaddec5e5c48aa58dab

SHA512
bdc404233927a6a99160492d0b3e2cf00776d51b33612b8c9ecba395747b3572cf1790269fb199915aafe84c546d30e3259833c9d00af8c412823396882ca783

Download Submit
/data/data/com.uptodown/files/datastore/firebase_session_settings.preferences_pb.tmp

Filesize
121B

MD5
ffcbf87665a36fc21782400bd0537e79

SHA1
3dbfbdbfdcde953317b089f9a9fa0bbe50c698ee

SHA256
a21d3bf2cca0951e9e7b3fed43cafe9f89a4cf9d844c82279b260852d0ee473d

SHA512
7f98ac150c422eb4f1126d86501d0435817ceaa7eb5549e4d21a295d57be3d3fed4388cda782c084130c4ac8d57a4f225139a2e42e8a12b34cc1679140d16b57

Download Submit
/data/data/com.uptodown/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
da9e27b3eb31c658ccbd5ce2edf0828a

SHA1
49eb7bf56b592e559f8ed190ebd1c6164860e069

SHA256
73622eaf26615be9eff53d88c1b0267a9a1b7adf3a5bbe3891cc3f2ce67af241

SHA512
3f354a029f42d09e8b3d3f886ef6b937744638182ee68a1c12d270bb6215072d6e4e85cdebaf9b247511e20e51783533297e6da1288a7e2beee6cb32c4d8c7ae

Download Submit
/data/data/com.uptodown/no_backup/androidx.work.workdb

Filesize
4KB

MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/data/com.uptodown/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
462bfa10aeca38fd6c9257dc6c7eaaa7

SHA1
6965a66eeace4a2b2956b519d6bdd1a0058dc80e

SHA256
08db260055831608ccd45b5e8e6900f180eda2357c76bd547ace4a0d28b7884d

SHA512
13f4a979233309d7303658dfb0a83cb975419cab5d04915c2b9dcff47a0e0acd0e7cd23336b1a852ddcd7a287f2b3beb0642f1ec887e2098d98baf8c61b52b6c

Download Submit
/data/data/com.uptodown/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.uptodown/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
d0f8d3345fdead37808ca8aab9201aa7

SHA1
0ee75b7953c7e39da97a8c8e28128ef6fba2614d

SHA256
bcb0d41c460319606c58652376aa33334e136ae7225371fa69365c6f9072dfe9

SHA512
34a6ee50e32ad17a06e2a81c3e188be05a62ff5a206ed41cd30329bbd15f4a9796109ac486ceef04280c5f5551867c4ad176515002ab164fc1d3eedfc6019b23

Download Submit
/data/misc/profiles/cur/0/com.uptodown/primary.prof

Filesize
2KB

MD5
665dfe44e42b9447b838304172117301

SHA1
c64c32169bd3f653d5b80ffab7770ddc7c06c829

SHA256
62949eb8aea5f5cb04efc5317b115b3fce3d8d900f6beea3b87ba171ce688352

SHA512
c33047b1eefcc5816a66f42271940ee7acc5167e849f14beebd5028327402c0e17ccdcb3d970ed912a6385496aaf412897bf1cacfe8fef2e201bf5b0c046ccf9

Download Submit
/data/misc/profiles/cur/0/com.uptodown/primary.prof

Filesize
11KB

MD5
74100eaa633b93d0b18c6a2bf4e3109e

SHA1
5e518642af2eddc08265479a5a44cf3e99563d55

SHA256
72f00e3b1eee111febb63c3c18045caf08bffec93fd1a9f7043edda4b5d0f8c6

SHA512
a56ad8a6fc9cd6dce6da3157ca812e3abe916741fc454b8fd2736842768ff76cc526814c454de3d76d39a2d0091a7b0514ff6fb9a9185f8c0d0a0d487d816fd8

Download Submit
/system_ext/framework/androidx.window.sidecar.jar

Filesize
12KB

MD5
bdf3529e80318eb14e53a5bf3720c10d

SHA1
25c9ace4b1af6e80ebb2572345972c56505969ba

SHA256
bbc8300dd1e9cd08de8f66560c1ac2c928615b72b51cef9649f88974f586d64b

SHA512
48b9c2d01171bb651b9b54826baa51f4add48431a3efd8ceb5f7cc3bcd6f8f37edf47fabb24349dd15b3a02329cd450f90a8d164bf4f8dfae554bf3b35a8a55b

Download Submit