0cc18aa0a58ac84d39ea0d681caa378f0c85e39fff230b85239fec5960068870

Analysis

max time kernel
132s
max time network
162s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
12/03/2024, 17:55

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

c3fd36103f617324d4d2fa833989096c.apk
Size

4.9MB
MD5

c3fd36103f617324d4d2fa833989096c
SHA1

f12b9d0c224e0130e33af012b883c6405bb32503
SHA256

0cc18aa0a58ac84d39ea0d681caa378f0c85e39fff230b85239fec5960068870
SHA512

8d4b97982f18c67d90f074c518ea496ce2ba3add85529903108acfe266de02c9aa4c93b93e1fbba99a08658a78fb788450760a2d9c7983e65ed9a9eb195ea00e
SSDEEP

98304:U7pojb8O89LBkmUVyt1CXzTAy6ndf8GDLPGNw9PSqflLO0iX:U7pTO89K/VOCXfm98GPuq5PS0iX

Score

6^/10

discovery

Malware Config

Signatures

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.contextlogic.wish.hack:Metrica

com.contextlogic.wish.hack
1⤵
PID:5035

com.contextlogic.wish.hack:Metrica
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:5080

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.contextlogic.wish.hack/databases/OneSignal.db

Filesize
12KB

MD5
ea628e04765adaf4238a5dcdff4bbd51

SHA1
a801947619ea8c368efe9c006a324dc6339ac60b

SHA256
885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4

SHA512
c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

Download Submit
/data/data/com.contextlogic.wish.hack/databases/OneSignal.db-journal

Filesize
8KB

MD5
ebaddcba0d3a79ad2290a379cf28f807

SHA1
2b9f30838d1beb43098b00ee129ff6ba50a18aef

SHA256
2672e21a4565660f3f376d5e6ba716173b80d6ce92a5221f49412cae10fa580e

SHA512
9058e3bcf2ef646fbce781aeb7c83e36281a4e8945cf780b1e76be772db5298647dba88db67245e078a73444e8b905bf59cd70e6f3358866e41c5d05a6c891ff

Download Submit
/data/data/com.contextlogic.wish.hack/databases/OneSignal.db-journal

Filesize
512B

MD5
848bbe364ddb2d5a0384dee5d898341c

SHA1
25d73ad4c8babfc7caa7520b9c5c731c52f32ee8

SHA256
5a8d163a37adb24b47174aa755a0d675bde27fbb5f3ccdca624f0960ff99fed2

SHA512
d9be30f1b918875dbd86bfb92b4844d9d538a1b6b2e03421a7b08125561e3a4c4584217487431d180d365ef08e2b111b4e1a2b59deb6d0c15eeb0f0e9d8199d6

Download Submit
/data/data/com.contextlogic.wish.hack/databases/OneSignal.db-journal

Filesize
8KB

MD5
eb969213cdfe1f9e4f4fd487524bd374

SHA1
4163a79fadf04347f201ff7d2eb43edb805a5da3

SHA256
dc03c2d353e346bad62c5e1b09ebaab127716a96b7b3d529d804d69122e5be8b

SHA512
ad69160e41e946dc49409020dd5054c55640cd005ead64ff0d97d4b2db3651bd0e0c9800534b59bbf1f22d2f34efb84863422db877205600f81db7bcd621eff6

Download Submit
/data/data/com.contextlogic.wish.hack/files/crashCounter

Filesize
8KB

MD5
798bcb565aa9e40b3dd5f1fc9f824185

SHA1
3f35f2a5372660db57295ec11e871c16049e7e6e

SHA256
ff026cf3429c0bf092c49ca32096ee9adb205a8e17a32fdc727fdcfda2b73896

SHA512
3a11808c428cc6780b1dcb6b25da3ae8a16324065efc62640c1bad1c7851680d7e31880448d1fa4a535d826176d6c732841cec7f78298316ec0587f3a2f76aa1

Download Submit
/data/data/com.contextlogic.wish.hack/files/lastCrashID

Filesize
8KB

MD5
55b7b4de2854afd4b7b6f7cef57c0dfd

SHA1
b6a77f3af9e0ca520472f49f9c83f1abc55d624c

SHA256
14c2bc4c82723c4e7ae4d75b483dd387202053fdb9e0b3fae401e443f5560082

SHA512
28fca5e21e6f75375f766a919b3f74b731eb39e8cbf8c13c95ee9007d5ce8be027f4383a5ad8876419930802aa02bf3a4623de49aca5a819bc71ca5857bafc0c

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
50a9e8132bc7b72a0241ac9011fbf71b

SHA1
1ad43dc144fd4815baa989e46db4bd85a33fe7aa

SHA256
feb7fd9b6b8649451ba390a9856dedf8f76bb3b6f9e7365140523010e8584fa9

SHA512
5aa5bd5b60338b7ee23623df746470c24edf32775d178565c0d22540a776e68b67815424240bb6bee35de92ee6a39b614fac1bc2350acd194c5df2218eda6d5a

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/androidx.work.workdb-wal

Filesize
11KB

MD5
1f1c758695c93ccc32b698084db7e70b

SHA1
fdf59fb0118ab5a04bf6ef08941a9548e8f719eb

SHA256
59b85dbd7995b692278bb8b0d84306c9656d25b1e7bf3f78ba197b32ef9a343f

SHA512
043b6bfba4bd479b874fad80f8eead92c0e4644ba60667c393a892e5b60fa72d70d5a558d2df9ba6c94e8675c1b8e1671e383b33d3df0bf7984f84fb34cc7a97

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
08cf5b8f6708dde6c5a2b7182688c7aa

SHA1
6b4a800b0cb974cd29f4b0f43171c1d829901af0

SHA256
e6684f89f10d65517d924d054a3dc43fec294ede35783bbce7d39302c8983ae6

SHA512
4a3b6eb7b6fc3ba8b22c123eaad7b1ca67a008e15ebad4ab38e4611ebfdb699913c103d2d8682c3d2af0bfa1de63b6c0ea4b93c746973595c7857bb54e788734

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/androidx.work.workdb-wal

Filesize
181KB

MD5
b7497cae6b783bf86cc0d0e3d048a41f

SHA1
0abca321e871857d5657dbf39d4c21fbe425f141

SHA256
ba2ad03d4e7d04cc506d4bea689d92ff65176b3a1c97b13aecb9f79bdf4ea2ec

SHA512
5a248f97e96ff30d1cd3959ccd0a71301c3ef670be3dd39dcd68fb2142ccb33ebd2407c54a25db9a69628394678fa4c7e3971dcc79b12d9acd8b0bf89618e54f

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/db_metrica_com.contextlogic.wish.hack-journal

Filesize
8KB

MD5
16a1a5b684ca094cb7b249c46d9dede6

SHA1
40cc18ed1d98e9746529e831a51e9624092df8ad

SHA256
e32148a3dd6b0f96bd20fc2605d0e660fa8e87f769ca752c1ca04023e1a30c6a

SHA512
cdfd60aebf372585c434d7c2e4870f13db4780a3e94e6b6e059cfeb85be59e67430e914f32e93b35c006aa0ea18396e5418f245257e72b5efe7f131952957e40

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/db_metrica_com.contextlogic.wish.hack-journal

Filesize
8KB

MD5
e36f20d7e4975be3108154b87996916f

SHA1
e0b54130cfc9db886c9db216d4847e8a34dccb5e

SHA256
a5e242686ab9512536d065e953e1bbbc79091e9933a14eb433684ca78152a200

SHA512
82ed69c8fb5337b8d990c4faa60260818b59a28b7be55c1336671baa902f62ad2b5c866dfd0d8cead2decbe6c36545bb9ed3b0de87151d1718b6df2e1fa296d5

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/db_metrica_com.contextlogic.wish.hack-journal

Filesize
12KB

MD5
28e177b72ca5ab38f58c3b321ad394da

SHA1
2dab9f88093830d34b13c1f210b3f355917c4ef6

SHA256
388640a5f57a1efdf06501b7e2567df2dad150fc76c96f73117b537cd5d4c28a

SHA512
94269ac9bea04c17b8a0a2e50a679a69a129c2fe8cc330ffa716e12ccb6da0200afc21f900077edd9faba526b0e5ed49baf9523bcf2a96d394cbc1851a2c0936

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/db_metrica_com.contextlogic.wish.hack-journal

Filesize
12KB

MD5
b5736193331b1d7af7c3ed2794ada382

SHA1
ddfea063a2edcd133055c7a24c99fe4b91c63c3c

SHA256
dbbbb3480afb1a31cae21e03ab27d2faf81778b55152c387777a70fed2a79e4f

SHA512
bfd31f822989732e31fb4f574ff688fb269d4381e912ae7198ed14a5420e4d4c349bce35338ee1e4d9280380234c43de9fedb0cbae374920be35adeac38ac919

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_client_data.db

Filesize
20KB

MD5
60c62ff659a441c0e31724041b1faed7

SHA1
401e3b13d0b5daba5fb3b1dd9e6e141f5247aa97

SHA256
bb326847edc2a488e989642238e3fbe3cf0f6a50a8dd75f20b3e91ba56824de8

SHA512
32c6ded813dba87c47e6e2ba27c01733ecaa62c9983632b96d10196f901417af9d41ce222acb69501e59c6eb2bb7c5180f1d768e05e463bac25b5d6833577356

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_client_data.db

Filesize
20KB

MD5
9731700d3a63b74f75e08d7e04f71147

SHA1
54abf6150e34d48d068230a7ecae415dd08088b8

SHA256
63762168985854d7a519026b7847e2aa4b826c8444a0a522be218fef81a7f1ab

SHA512
9164bd140a25f14aede40353bd6531684a6107a587114eb54e8584eb6c1fd11eb083c85936de01f1dbfea795993355603db082e27d71021d16a79f72d7830898

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_client_data.db

Filesize
20KB

MD5
9a715193b82c556867bc20f2dc0e9db5

SHA1
6a3e5cc7a2455f556e6ff03c9696ce01985100b5

SHA256
90e229a321c30d910592158e6bcca1cb56d2835dc65378cab92e7a5c1bde452c

SHA512
26f0f98d620b5309d63a79fe233ac827577a3c842df2b457fbf78dee0d8c313599b4d3ac5a15f44fc42fa03b76aa089768ed2be8a0566afffbb142c43bb94113

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_client_data.db-journal

Filesize
12KB

MD5
8ba2239fac7116f19bc35ad7e62150a6

SHA1
b1f498e3f237e0527d0fbff7b07b74dca3d236a0

SHA256
a5264171cf716730ded003bb4cce16eab5a61bf18a1fb291321ff1e3dae164fc

SHA512
2a85aa15a1be41f60f204af8c9d446aca54aa166b0f53da9ece9cc710f680f9eaf5b81a70c578008e067e0bdcf90b0cf80d39a241609e89fa9de39c9e14483c6

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_client_data.db-journal

Filesize
512B

MD5
59566fd81d3166053655dbf73cdc2db1

SHA1
d281fafb348ddda286dedcffba4e444a8884e301

SHA256
b5ca639699fa6bfb0354b4bc25b7052f697cfccc93fd0e3c5b98e02b0d990877

SHA512
eeaeaaf83b3b8b940c4cd81b70ae0fb102b5ea964ad64a14b534569f71d6be40d043480f5886cf182538ab2ad6d12b772fcaf0d055840eb14b60aee03f153f70

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_client_data.db-journal

Filesize
8KB

MD5
40471fda8836f483e5a83bfb35d45c85

SHA1
9cfb677b1fde070e9edae837fe4311bcb62fae91

SHA256
851457873ca5b7ccc72de4a20abf91a1b578287b304716312bf280285903cdaa

SHA512
dbed0c0fc0b3454848e60660a31324462e6ef4f79d95c1387a4957e681a39b711614b010e82f0cb22025b4eb77f04c9f2b048ab7b43d5f0c82975a3da664df64

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_client_data.db-journal

Filesize
8KB

MD5
9ad8483508e964310bdd443c3f7fe72f

SHA1
11b31fc93d562afdd8799c6a297987af8debda52

SHA256
d2377090680e101f518ea0ac192fab1d059ce110369c53323326eed25704c09e

SHA512
7076c46f23c7b5a877df8058017650e1cc750b4121a4cd2bf1d9507e1c4c66d246a9516b8bcbf981da881d76bc03ef1ea4f5b58c6399b8103ed5927661580d5e

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_client_data.db-journal

Filesize
52KB

MD5
5f95caa096ebd3fe93432163e3fd2d34

SHA1
48c9bba88699f9fbf625d27b189ab4395662ccc2

SHA256
c17b0ff6f351266dfc375282c9ee02b8263348390207cec71835d7e0956419e3

SHA512
e828b3db8d88c761426eaeb76cf836fb92a1a5063a10ae3ec75425057f7e638a17f698b4fbb8202c17ac767abc60482e7d2f702e0d340dcfa21f0a4c6380e0a2

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_client_data.db-journal

Filesize
12KB

MD5
5798807ed9bcea64a32f69c827e9846d

SHA1
df4093ffb1210fc72f892304f8bc099004e52f1d

SHA256
df371b012a936a7c465465e2bec06eba4be40e05ef8c112b86f2eba7a435f880

SHA512
bafb13f653a7ab24b9e8dac3fb8579645a1a94a006e16b3d59851c956b3bebb6a7ccf0bf0eab558515066f30c62aee9bca357a4699d8cf1b95880b1b97d87ba7

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_data.db-journal

Filesize
8KB

MD5
1bb9b933c3635a6382a129f8dea68b66

SHA1
2eeffe5bb08497e943ba4dfedbbaca0470e42f6c

SHA256
802e3d983536a96d8fef21a1fdb20e29482d5fd82316dce9cd2b59b4a10a2f6a

SHA512
3c26f1b89e69422cafea47c6ba34c54e23b88dc62efd9765840f2810f1827c83f236d8a853ccfe0fca99b15ff5ffbad803d12d888e320812ffc6f3b7ad16e717

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_data.db-journal

Filesize
12KB

MD5
ac3099b819d74af8d65feee55ca90aaa

SHA1
d9beb2b0238fc4413b666bc6d4321d0d86f4bef1

SHA256
e36b61099532535c409051a2051fb769ac444bbdb8bb77132ca5c4df545ec925

SHA512
7196b993b19753cf76c1369f448c0abdd644d2b44c91c4789fa4639054e25a82232255eb849a10d7809081fcb235a4f35f8c0b1f2628b380787f95baa2cb3395

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_data.db-journal

Filesize
16KB

MD5
29b64e6274dce7bcbb1cc515f384a0e9

SHA1
728c168d5392058bb1d3ad4b1c972d24cf256a7d

SHA256
5247854e8ef40c284700e4556276241d50fa8e06fd08ffc2d1bb9da4d0e33353

SHA512
737ed13590434cdf9968de0e944958acbaa54e8f9b7969b7086c6eae8cda5033684cc85e8f6185ecd27d77d2c11ff8a4b13c04e1224ceae39b47572d77040dc1

Download Submit
/data/data/com.contextlogic.wish.hack/no_backup/metrica_data.db-journal

Filesize
32KB

MD5
fb99eeada091e498e8b2164c22997732

SHA1
6eba8751a301ed07ae50332efad722d933745a73

SHA256
fe0edd8f897456b226f8b32ac389ef78e17ab0f2ec70c83941cb1eccb8a1c0f0

SHA512
db42eda1038c24813dc3e2e0043140e1cfe65823bf6ae4af7bdc5ee33bd552c76fb7f51b425813d72a953efb00c6bb73f4034d216849459e129d98feb2928fb3

Download Submit