0ab07d0f32d24afbceda6342d3a1f09a4e1a9a59cfd3c7ecef47c72a5093b924

Analysis

max time kernel
47s
max time network
139s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
15-03-2024 17:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

WhatsApp_2.24.2.20-By._SamMods.apk
Size

91.1MB
MD5

da89ada934b18eb084b5fc2c58e067d3
SHA1

472c0ac0f22cabe95251e0790ae6f75b24ff3e02
SHA256

0ab07d0f32d24afbceda6342d3a1f09a4e1a9a59cfd3c7ecef47c72a5093b924
SHA512

16d8d11457f99a1295df786b06efa5633833242b29184fcb2b4d288d01093c833e9b4314352a5b20a44366eab7b041fab3f233eca8aee455f2d216019ce898e4
SSDEEP

1572864:/B6WsmUzdS49MCvBE9dMxyAzr3Y81PapJHXsDLDajNbo1vC2:/B/U5S49MoE9unzM89QDhb0C2

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.whatsapp

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.whatsapp

com.whatsapp
1⤵
- Acquires the wake lock
- Uses Crypto APIs (Might try to encrypt user data)
PID:4282

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.whatsapp/cache/SSLSessionCache/static.whatsapp.net.443

Filesize
5KB

MD5
8c14c316c8ae52cdc58d2ee3e7c504c3

SHA1
897c44cb9f45dc60a825c3618d1c502e15dd1e33

SHA256
85a108a882cabd80f219d392cfbced0c61908a287f4466da1a329eecc2a40c8c

SHA512
d4a48c2dba5c63f515f8a5647de259c6a08aa88ff4592e92aeefbdc646f8ea3e8cf54c236b3ac6ee80dc6df44faf6aa03aa3401d567c356b236d8d98ec379861

Download Submit
/data/data/com.whatsapp/cache/SSLSessionCache/static.whatsapp.net.443

Filesize
5KB

MD5
1b5b5652415aea255d3e8436c814b6d6

SHA1
4910887be19f56a86c3466fd52538a89a85aff3b

SHA256
c478a4cf75105592137007920e44114a08247152134d9e8129b61dde321dc357

SHA512
ae665789558cfd1244a11cb6af46ac79e1294da036f5c8ef62dbe418e0dd717483692a3fe8a04f389769e9ef6df655d1495bf9d7d751dd3210aac327b5340cd1

Download Submit
/data/data/com.whatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00003LightWallpaper.jpg

Filesize
12KB

MD5
3bf0b92edf4db6604554828d983d154d

SHA1
86980ce01d87da26057e30e52f5967e5fb56271b

SHA256
707ef8a4b946419cd1c307a090c89924aaf1a5a72f4fc23c58e7a837a7efc566

SHA512
40162c0fa8ffd17446dd02209814444e6dc14e76983fd4045e3b56899788f350a0ef988e67c56a416504ab808d7d4dbbfda7e193a241424317e717e749908be6

Download Submit
/data/data/com.whatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00005LightWallpaper.jpg

Filesize
18KB

MD5
44bf8905cacc48d4409f88af0f2efb6f

SHA1
5496098f91d97cbabf651bbc04b3d36b37939399

SHA256
51475d46a1458f11d054f95fc593c32a315e1e60b99cca4ee6aa7e00a1a42b50

SHA512
fc6a48021df45e666c6fe0f1d71f7c407b1e10a56720723f25bb34cda5fd6075c11594cd81fbeb19302f48105d086367e96f1d7fc7ef10ad1eb072099e17daa2

Download Submit
/data/data/com.whatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00006LightWallpaper.jpg

Filesize
10KB

MD5
4d78075aa069f26ec7d9994afc457d17

SHA1
094c3aa8599df8355d8bef6000582a5f7bb7ee93

SHA256
efed2055803292e8b465676b63e19004efe0d008df2056d93e14ab325b22a568

SHA512
2b58ac1481b05c5e7e57d7b84ca495fe844254ba0e68b0a239f97a8e7c9c92efa5432fcdeff5bddf07b44522aac00511438f352edb6cc2ee720dc1acf390d5f3

Download Submit
/data/data/com.whatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00028LightWallpaper.jpg

Filesize
1KB

MD5
4ba6e61e82395d082522b0194fb1de9c

SHA1
84546115a9bbc54e7a4c800e08cb13b818ec3c02

SHA256
704496e97d97d14d96613d879945113fb81530594986006486502a6339a08798

SHA512
da85c57295e79f3fd0f10b516f3e8d75fe734c96d7722857070b777074b8b14e99e6abb7bd65175811a2a5f2dd64ef85bcc884761c9228abd2d535c71d8193ee

Download Submit
/data/data/com.whatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00030LightWallpaper.jpg

Filesize
17KB

MD5
0b1081608b2aa922b803202c188f82f7

SHA1
accf07b1d249ca871521820b77b16f93c040fbd6

SHA256
ca3235532225a6ad20aca485859705534ead51c49afba78318e63192d428c908

SHA512
1d2c5d0f175c4548c6de17e763b7dfbf2889dc5f612b68b5f9455f68995b9112f290d7404af52cb015d72e0a3297ccaa59eecba920978deeceec8c6fd3293e91

Download Submit
/data/data/com.whatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00031LightWallpaper.jpg

Filesize
535B

MD5
3fbf7ef16693138199dc0c2790ef507e

SHA1
86eb4719afc511f8b4d8d35ac564ff6ffa4cab76

SHA256
c4bc514e76fe51091dffd5f5ceba93272f14ab9fe131d2039b29652d314bc883

SHA512
1e1e242ba3573925b7765468878ffefdada6956a55e2e23aa57ff224349b51f337737aa2dacd8d0cb63e07e95ce38c34d032452284a487b3ddb1fcc38c092182

Download Submit
/data/data/com.whatsapp/cache/downloading-7888329777126674284.tmp

Filesize
73KB

MD5
26f985184419c9baf376aa694c5b9cd6

SHA1
5cd7628417612d95940e1b26b21b3112f938abfe

SHA256
5a89ab27be17e625c094159b40f68b6714ea3cc3cf8de1fd84ef584b725cb8ba

SHA512
2a5d9dd6d7ed5f6818417b6bcfed89e47c1b0e25242aca496e6356e62e3beeb02e3f168eb5471fc73a39bc56841f2109b753ff2c55be116774859dd0185d1ace

Download Submit
/data/data/com.whatsapp/databases/stickers.db-journal

Filesize
512B

MD5
3d9957d8cda86d2b804969f397c457a8

SHA1
e08deb176399557204c938ac11ef5687db4746ef

SHA256
be6ada0ea6b47113daa5816213662335f15dcf33a5cb11926d23f88a87ba175c

SHA512
862412bfcd20a3be824ba9137d620bfe44dbfb5e6e66a2edbee4030146d2225f359dae0d2dfadeb8724615cef7f23eac24c9ef8b2f32c057887e46cd93d4c5c7

Download Submit
/data/data/com.whatsapp/databases/stickers.db-wal

Filesize
16KB

MD5
556d6a812c2a0b4d283011e80d28518f

SHA1
9338dfa9f5e53c6410e94b8797b751842a0cbad1

SHA256
03936f00f917e5341720d87c3acfe87117bd80944cf4c1c604a1a142d2ed1cd7

SHA512
968786518ba9eb38a53a37e39c375d0aac7ae855c0e32c62b12ab20bcb9b43c1b245c71c0675f9e8b5832aa56c116d9671a5533a9b73b3be29331aff35b6b010

Download Submit
/data/data/com.whatsapp/databases/stickers.db-wal

Filesize
156KB

MD5
4dbe8165abf05d53351dd094f5fb9f49

SHA1
af0af531fa14939d2298c70ae591e5d56e115485

SHA256
4fd5e16adf68ae50c6e510feb7f890f7db22b0bfe8941a40b385ce137cb687c6

SHA512
48af4de4bfa1139ab70669624b12fe2a2d54cb5c2945b4c039095375d5a6a19034bbf38efd52faeadc0436a66040983fa39fb9f118542294792828a798ff54ea

Download Submit
/data/data/com.whatsapp/databases/wa.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.whatsapp/databases/wa.db-journal

Filesize
512B

MD5
19c7e5e6b7718f49ae2cd06f64b05f19

SHA1
6d38e0c7eb81df26407e9bce309587c8958b8132

SHA256
bedae2fc115a81751e8a994a1163f1abe907029687fd2359c78d725cb7437dc2

SHA512
5ec1ac101daf1aefb1d3f094cdaefeb5778918766918d666ff9f2b178a8cc202f9952369bf03e1525ed471bf4f72a465e09b42e13274ef4ce8ba006be2d9f1d0

Download Submit
/data/data/com.whatsapp/databases/wa.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.whatsapp/databases/wa.db-wal

Filesize
16KB

MD5
e5f1bbda9191ac4e4a4232e1f3c060e6

SHA1
3237f29cfebf86636b0d9d3efbe0ead47e8ceecb

SHA256
a4386bd64466352514c56ec033e0a74f738abb655098f69d701b98db5370084c

SHA512
af754d3ffb7bca38c3ca6e2ccb25df7b84c0ea81300921306b56e7b63aada18ef914c5eeff01d91db818fc06d18792301ae0bffb030ceb3ea54718933f879d0c

Download Submit
/data/data/com.whatsapp/files/.trash/9af9fd5b-8bbc-4f07-8928-be8f40fb33ee/169fa253-e9b7-43c8-ab54-08dcf91a18dd

Filesize
67B

MD5
ba6c65a76bbbcaf59fe016a4c99d8a50

SHA1
6baf4acd4bce056092364f9047cd64035a8a4d84

SHA256
5b04e69a9e6b37408b49a904b5f9f39bed48d83af61371b08a2d8e27c50cabde

SHA512
4f7358545f6ce106301c14780e7525c2befb4e198bc9dd63b60b774df091ae4bb3361dbaeb017868fecfe4adf72979eb5a4c0ad392f58daf92394545168e6c0a

Download Submit
/data/data/com.whatsapp/files/.trash/9af9fd5b-8bbc-4f07-8928-be8f40fb33ee/49e9b6c5-bb57-401e-be90-3a26661e23d9

Filesize
526B

MD5
2c0f856d7250fb18c8dfe900ec9bd5d4

SHA1
10c62e9db2bdffd3d76829987e50d0efa5e0a72b

SHA256
62802cd5039ff363156f7d4dd4d7360d095090a6331131f018abba016b6e1aa6

SHA512
ef5d4481e27d2d6053a224f685b983e52d7ae0d2dbae4f349c1ed0191e4d5b737ce8e2f0d8a393f2384ff9bf05af29f47aea983d57d0b151e89b3cc8c6ef38e2

Download Submit
/data/data/com.whatsapp/files/Logs/whatsapp.log

Filesize
1KB

MD5
172e170c2dcf303a0d7a085e7d9eb941

SHA1
da8ddac92b7d59d9bc5233ee1c7098f8597522a9

SHA256
70536b2c41d4fb1a6d3cbe583d6b70bc9fe38fe60a28a19148154a3d73b4a8eb

SHA512
046d138a70393b2fa3df226fb3682c278db207a262e2b1883013d90fbc0347dd4a6c31bfc4280e824a76a064d619d65cbacb629b1752beec9467272c7fa2423d

Download Submit
/data/data/com.whatsapp/files/decompressed/libs.spo/libvlc.so

Filesize
4KB

MD5
19165eb8d198904e9a3cb0ce8fa1d5c4

SHA1
a0ec66256aed759745dec7e3a69f66b6d178f749

SHA256
b097b0e49040d43974c31139a71a8e4b24025f01066f1fc41d2f8dcf8067815e

SHA512
a9e1d9fd26fdbd6a0bf266aa57785027e0b7cfbd376749111e59b5c55c6f4dda09a0e2d8b42eb243eea68b9f9232a0b6616f65a7211b83b29e91d69b8c8b33b4

Download Submit
/data/data/com.whatsapp/files/decompressed/libs.spo/libwhatsapp.so

Filesize
9.3MB

MD5
0e6afa90d23d65c645182d2a99cfd01c

SHA1
0a6bb17e7a2069155419ccdb55b02f9ad773643e

SHA256
2629b5919fa2018b615b74f282765e2c752550b079d3ed9208ad15b39a2a7471

SHA512
9d7bc7641f21beaa8e3804336947185897e30193e243e9b0f281937b468030f6a6ef56cfef735c60678ad968f02525b31dcf078af765e5172cf2a7fa24fb991f

Download Submit
/data/data/com.whatsapp/no_backup/com.google.InstanceId.properties

Filesize
63B

MD5
973ab8aa58507d0f111217d5ac6af033

SHA1
bace1f05401f222b9ac3c58537cd18dca1202dc5

SHA256
2f19cbbb7fc280b301dfb71e90e1627b2aeae20388ce421950faf2681b05c0be

SHA512
9146a01a0a8ca6b1df5b0541fd32f708374a089a866be5c02a247bb75824fbb899b1f3eced12b1bb0c1ad7a9e7c5f459435cce77dd4151313fd90bcc33330171

Download Submit