a9a2b6d1e462757abb4e050ac5561fddf155cc8d955056aada37e792a0768101

Analysis

max time kernel
105s
max time network
143s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
15-03-2024 17:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

GBWhatsApp_Pro_v17.70.apk
Size

75.6MB
MD5

f8463591a68aad0597585a5383a15ef6
SHA1

55256fde61e9f17a732c31da5b1b7fd452267e71
SHA256

a9a2b6d1e462757abb4e050ac5561fddf155cc8d955056aada37e792a0768101
SHA512

0aac2da072ea697ed3eae3eb74975f6da30ebaa3d8a7dc3bf3c3b6bcf72820d974d60fcb19d877ce65d2eb87cca186ca98ef8ffcfbb7bc6369f67f14c2e36e0f
SSDEEP

1572864:c7vrTGr1V2jil7qtP+p1c4s50MmDyPwpJHLprum4hkvdMwoZQ:4+Yi9qNcU0rDuG4hadYm

Score

6^/10

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

com.gbwhatsapp

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.gbwhatsapp
Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes:

com.gbwhatsapp

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.gbwhatsapp

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.gbwhatsapp

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.gbwhatsapp

com.gbwhatsapp
1⤵
- Acquires the wake lock
- Uses Crypto APIs (Might try to encrypt user data)
PID:4353

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.gbwhatsapp/cache/SSLSessionCache/static.whatsapp.net.443

Filesize
5KB

MD5
4fe24e70592644d7661edb25d6e8e528

SHA1
66bbb43e46fdadfbecc186f55c249f361556de40

SHA256
51772d36afb7af44b13d48564462bc5d56c882a705eb8cadc83efc0648437bce

SHA512
ef403ce5dbaec5d82d02fbc514a4a3245878e0d8cbe2668917678b17fa70c0941e73866dd2dbc4cd8d83782e2842804bc452890e96e6415bd5a6e5eb5e9dfb50

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/dark/00015DarkWallpaper.jpg

Filesize
8KB

MD5
7eda24c67162a542f2fbe6f94312df12

SHA1
da9d62b53cdf447bb67cbb792ab3410d864d193d

SHA256
7c1205359eb28899061d5e59690cc1ed8c1600fff79509d5d03c41185cc90128

SHA512
30782e9d3f2075dadc20bfdea6548de16034362279f7958cafbc608fcac2a77ad59f5d7b545e73ce5231a1dfc2b62219d718faa4bb10a03b26ba90cabcaedcba

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00002LightWallpaper.jpg

Filesize
10KB

MD5
676d050f5082a83d37ea086300b02779

SHA1
8f17f1d79ad47ca722a7d60c8e96c2bea0af590f

SHA256
39fb86c3c500835c134d3638e2473b66aa1e132665f700b84c0140829678fedc

SHA512
8b3aed029a22e22e63e8982def6133fc2f47649cb23b5605a55cba129b030bde7967dd21cb236efc1e5346826ec266b4ecd76b0a4b3af28d999e46805d52c70f

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00007LightWallpaper.jpg

Filesize
35KB

MD5
6a9cae33ce8c8313cfd0f59cbc542829

SHA1
5d6fb86054c21173a65f3419bdba926dd737bfb9

SHA256
e588483686784d801fb9ce1c2ce37616488116b0f9a97594a1c7ad430ef84b27

SHA512
ffafb81c30c95a3b8eef63f49a166042557c3ef915d9c1075fd0023ec6b5549b4c1fc1a55c733a63260a8127532bbd0ea812aa437837c195ade5341de9a48e71

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00028LightWallpaper.jpg

Filesize
6KB

MD5
84ad485357a5ff874827bb7cf268882d

SHA1
794ea0b3e795eae15742cc1e1f944d7b62a15680

SHA256
e12f045d6df081697ce6605a0a3d8e5c37618f91c1459e57a1cb776fbb3c5498

SHA512
f89a731dedf5381c776e2ca43f83fb538542466a58c538316c9d248c5d0b28d7a4cd55bff75246d04bfc3f9c71c27bc4c90ed45ce60919c446bad8ed4935c49f

Download Submit
/data/data/com.gbwhatsapp/cache/downloadable/wallpaper_tmp/thumbnails/light/00030LightWallpaper.jpg

Filesize
7KB

MD5
27ef76e051f5135330eb4509c028a291

SHA1
3cde7e83a696a6acec55e104d0d7f851751953cc

SHA256
c4037d053ce830c74d89d35207987cee9a7c0318269ada70803d80662de173b8

SHA512
7d3f565b56ecdf55b9490357a6ee331a8e00cb3fce2e156513828e69582bfb7841efdaa510b24520a1006618ad06ddd43009a2a07770a82a81d1f8292e40f972

Download Submit
/data/data/com.gbwhatsapp/databases/BTOR.DB

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.gbwhatsapp/databases/BTOR.DB-journal

Filesize
512B

MD5
9d9cb9a385b2a1a29ac27f0532064f38

SHA1
ffc61bf6091a0fb1981a2d5b71a171382d167598

SHA256
997d687f48d77e68c5c4068345a448e304ea8cbd9601bc67adb57dba6e88cdf2

SHA512
fb6d64e3d32801d034c6aeae6c91244a25ad5d827af580ee5834175d498e4d9482c441e659517ace9521cf24d252375c5677f8a418105e9123f0bdbf6cd99814

Download Submit
/data/data/com.gbwhatsapp/databases/BTOR.DB-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.gbwhatsapp/databases/BTOR.DB-wal

Filesize
32KB

MD5
53085671d41a7096550b52b225ed8bf6

SHA1
6b901486e48ede6e619ca50d792a7791ae480cae

SHA256
99a780e921919d18241e3d46db7ede2a1d97503f6a8cbaffd9e078b6ca79be04

SHA512
bf0d017a0e09d9ddf8c6f7b51c438a318fc52699d885b3401262fc48ab498dd265a41201621b0654fd391a6d9eda67147d13103de8b1e4e7f6a56a400269c6bb

Download Submit
/data/data/com.gbwhatsapp/databases/EHS.DB-journal

Filesize
512B

MD5
79d1fb4198dd900b6ce308483f35092f

SHA1
8b0cd2e6f50e5a1338efa8c47e0c34475f69385e

SHA256
9f1c7b96099bd4938251f2c502bf50975650a6eaf3cc61cca24d632da45e9a20

SHA512
7915823da2002107c373b9f957612f716accde90e2c4a674e82b2709307a1457ae1262d2f52d0348b2b0ac7d1ffe477d6ec9caa7504ff64a724648476535522f

Download Submit
/data/data/com.gbwhatsapp/databases/EHS.DB-wal

Filesize
36KB

MD5
24b43607123ec2184ed64838c07c7bed

SHA1
458367a7170df2cc7be30ad74f4c74550a55ab2a

SHA256
0d9c07131b57076ad961d6b16014134a23da25ee90b8939c55525066fa71e3ab

SHA512
38651532610ba99f359a5a52aa8a95e1a0c73c9b2d8db306cbe2fdf435be1b4788b87361ce80d7203dc2880f4ae78fa0ed19058b14f142fd845fd7b0b245943a

Download Submit
/data/data/com.gbwhatsapp/databases/axolotl.db-journal

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/data/com.gbwhatsapp/databases/axolotl.db-wal

Filesize
100KB

MD5
2aa6ac8e843412cd19a4a63c97466d22

SHA1
ca688efcb847c8360cf2d174c7cd1b3a982ddd99

SHA256
2c37a40a01d59723ca59da1f361193c4e30b5f2b861c1f70216e53efbed4c10b

SHA512
4620e5dea0657dda907655cef904f106347102fb1b5b3ac13f44d96e81fe63c6afa083f8c15bb8590bf4bafc3dd4b03b47e3b02b2c571fc6938ca6ef591264de

Download Submit
/data/data/com.gbwhatsapp/databases/axolotl.db-wal

Filesize
16KB

MD5
3473652ef9e64946b0528e0ab90197ee

SHA1
02838e2e5d648f450afbec8334afc2c45a619014

SHA256
cc7a6994a4ec748e867c6cf1724276dbed8b2d151c8f8736bbef5addb01fdd55

SHA512
79dfe556c85b430d26a12fa17d012b412bdbf10594cefe6cdfee56d79e77d0d1b384626cc3c4aba1a15c58585b58949106fb1216d9b4282559d6e425030dba3d

Download Submit
/data/data/com.gbwhatsapp/databases/chatsettings.db-journal

Filesize
512B

MD5
66c42d4a8e4048123659a984af59c53b

SHA1
3953050a7308da20936334bcc7685b1b0e1e9372

SHA256
d75f978171643ed2eafac88218cdc54ea212d8df15025a3dedcce9631c6fbaf7

SHA512
8e798f660a03fa817cdec105c15fc83eb5fdae01d5b7a9dc4db16096de700668a635ea0213b6312409c31bcfdcbfc9839a29ea08a245c24f47c4a6d31540df31

Download Submit
/data/data/com.gbwhatsapp/databases/chatsettings.db-wal

Filesize
16KB

MD5
c45c061656bad703071e690555e50ea5

SHA1
741c541640fdeac874f31293304067bb4b96f2df

SHA256
7d5500181db45ddea3d6cc6f211a9d98d8a863b6a2656f1044bc0258fe6d67b0

SHA512
41cd3c940091d9d7ef22b17c1b8318bab7418b7d53ee8a8f48429d287132a46c5520e3353ccb7886ee819a111fc60110493d8f99d63053e653a8bc485cb4eb08

Download Submit
/data/data/com.gbwhatsapp/databases/chatsettings.db-wal

Filesize
36KB

MD5
2e4dcc6f368949d227cecbfd53a4e91b

SHA1
d5a9f25922e1c18a7a51a7df4989a01b33e2e1db

SHA256
6d23143409ee892e2d3417d5fd4e264f0ebea9c2379374b3b7e6ac31ff8f324d

SHA512
a012de6dccb6d608dc40bd01928a4fbe41e6e797ed6d9eac4296ba50cb0d426a1a4f0aafb090a65b1fe959d6da28cbdd33d133ea28bbf3eec83e87206e520d31

Download Submit
/data/data/com.gbwhatsapp/databases/stickers.db-journal

Filesize
512B

MD5
c59ad7591a4071a63aaa321a973ab0d0

SHA1
3232342ff75a9f2d389f92c3bf53debf0cc9817f

SHA256
d1f8c198bcb7d763f427ca24ced165ae08b78bff082acc9a3d37428db34fbbe1

SHA512
1b0f4bff566690e5fcdd0e5b9b33a7418d677c2cd2e8287454ba10d1286b532d41f2ba2205d88f028c8e02bf6e4a02900695f06216b2e0c8664a1e6309359b09

Download Submit
/data/data/com.gbwhatsapp/databases/stickers.db-wal

Filesize
16KB

MD5
28090e8d8d2562fae72351b0b44989f2

SHA1
2f580661e21b3d6b2a4b51f70edfdfb706f03409

SHA256
e03df838de4ecd3cf56407c7247b0a4b47db2a4df2a7e4ba331c2e193e76547f

SHA512
23ecb6fbd503a77aa60b53f217dfaa8c62d8410f2faf69fcff5f55a151638d3150d6aea53208b02edc4f5ce29c2fec4ecf84daf24f40ab58bced05d7ca37de33

Download Submit
/data/data/com.gbwhatsapp/databases/sync.db-journal

Filesize
512B

MD5
4e23c0936ff96b555a8a093eb4a19b04

SHA1
5fce39ffffe4bef4e09d950f54be32b555978003

SHA256
dce0157a66fd89f3523fbfab23b2fe01ae257c7b6b75603b2c0732a97f69ddb5

SHA512
cfcc4f7ff13c06d60cb153158312f162cc70aff7985a7693c32338b3ebf60404accf205fca7a65aa8969ade19d7bcfcbd0decbfa2b8d99969e794330ac06310e

Download Submit
/data/data/com.gbwhatsapp/databases/sync.db-wal

Filesize
16KB

MD5
653a72fe9c0358d2e7ff7dbda4a8b544

SHA1
0b0bc692a35736c9d56112e368984db9ce3ee9d1

SHA256
d3f15fa5072f6cb517cfe15103e0e8cdeca15085a0b2bac6dd8ddf259f87ff3c

SHA512
2a7c6e07d46fe1a87ed7fc977e22319aee9542ae63f874c6e32880bd8889befbdbcd0844dfa2baa82cf7ae7474bcbdb942279f59036fbc2efb3cc8afe3c19209

Download Submit
/data/data/com.gbwhatsapp/databases/wa.db-journal

Filesize
512B

MD5
3f96a4956cddda96716753d32112801a

SHA1
7df2b94b8bca4fca39bcab578aa37d948b34dc6d

SHA256
b03bb132ca2e8aa6d944a9c2e0ddb5836c5804773c46f170002c4892db534de9

SHA512
e8b1cd68a78d5612fe19745660ad05d6aa38f7e65d406a186671f1c36b3c13ef3af34e5c7e3bf7f26aab91534583ccd94f62af81885ca6681fb5feadecb7d2f7

Download Submit
/data/data/com.gbwhatsapp/databases/wa.db-wal

Filesize
16KB

MD5
1d23f9ab0e85d93fe892f2e06784ab42

SHA1
a3e309f636f8806a32702691e0ee7e87d4208898

SHA256
0ee5f1611fa2b29c3410e64016cba636888a135b92346e0522ccf7f505e1aa4e

SHA512
97c03cea2eed5b34953dc47df5d1c17dc2046c8397987b9ae3ec05de27c6fc8eec100e7f0e6d62ebfb51e7be11f6207ac9576950229fbf8885f0a9077bf0d50f

Download Submit
/data/data/com.gbwhatsapp/files/decompressed/strings_en.spk.br/.superpack_version

Filesize
33B

MD5
7392fc971ff88b8844361ff23f2fe957

SHA1
c62eddd50edeeea2e11cb745851a2d042406125f

SHA256
890f5648b034363e0a99d2c4011618533ce61ca9bc66f05ddd97cb4e5a6ea006

SHA512
2a35c2f1715f4a3daf6890acec1b124df1cc749d39b556a4d6b311f80868408a257da6af67dba1806b9450c6405f49679b52445a6b4268cf0604e40ea045ba81

Download Submit
/data/data/com.gbwhatsapp/files/decompressed/strings_en.spk.br/strings_en.pack

Filesize
14KB

MD5
ad4f03a0de28bbce17fa5fa6ffedcb87

SHA1
1aff1f5f33a089bf98545b47a12571e782bc662c

SHA256
2f4338541405123620373068dce99c1b5a431705354f7a6415fb4871feb185cf

SHA512
b60df609557a394bd6fc5f4da46205c3f25f8576ceb3b3a63fc35de1bd08b480164d301e533365ebfe030c3dc61a96fcdf8dbc9af5198fb0b63fa7cc02f8aa98

Download Submit
/data/data/com.gbwhatsapp/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
0ed5d37fa64ea44e6f303ffef63ec8e5

SHA1
a3fd1f43d06a7076bc378d39643e1f753fd494bd

SHA256
6f5e5a7821c1805843fe604531783d9726d55132fe04389adb7752df71e00488

SHA512
9da5b706300b89c9bae50a3fde08304585be01606f8ad90cd9edf6492cf0348dedda3d166ff175de5892ce08b5faecf18c15813e9e8ae8e9d4cf733d03170282

Download Submit
/data/data/com.gbwhatsapp/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
b2c0c985762148a86dbb898b627c0a9b

SHA1
3222fc021ad856c04ad97ab25b97a552d824cb87

SHA256
f25029e3590641ce239cf5a63bc3684d4917ed918600e4f95e1ca01f39358335

SHA512
764112415d9bbd848026fcbbcf649c9c6704e0cf1c7d198b4e711283254ffe1fd5ef8081224d6d16e82ba20c210ef21f2af4bb25b03186f304a4998529296a2f

Download Submit
/data/data/com.gbwhatsapp/no_backup/androidx.work.workdb-wal

Filesize
112KB

MD5
5be5e80aa96b45e5526fb9dfa6ef4d32

SHA1
d665b524394e5e2e1172bacc0b848576a293448f

SHA256
62e4805333d66a16e9578530902c75cdb039636ee49353114bdd603b89a786d6

SHA512
f05a9c0d977da1cca03ccccb76e69ab46b03d40994e75e871b01f6278affa57ff85de33a336d8b561082691f4a98dfe5a47a19868f29ee6e1007256f8c36ef8b

Download Submit
/data/data/com.gbwhatsapp/no_backup/androidx.work.workdb-wal

Filesize
185KB

MD5
6069e562cfed53ed89a47f3bfd463baf

SHA1
3979dbd2c417edcbfd8797b846106f76890532e0

SHA256
31a0b95125b93761fdab0227ec6e1ef12c13556fe72454846d86732ee2d60c60

SHA512
1e91aab1d554b7561356b8d13e65dad6996a45bead231edb5a484c1b8157b1e2680cff290d52df8717a7787f96608e24f845a40275b6e7f387a3b611482ab69a

Download Submit
/data/data/com.gbwhatsapp/no_backup/com.google.InstanceId.properties

Filesize
63B

MD5
9b4a795a4f7cf361084534cae0e5f671

SHA1
d6dc9d731cc035c1c7a8e132ce102a943e1f1401

SHA256
96ed243f530ec80a5c7eb147d1c485c7ffefc341a42ac4a23b9318fbac7c44a0

SHA512
ea16b6e0e8626fa66258bbf303923cc48c1d99a7b496cf111ea3d232d1e4c169a15d82660a6595bb671984385e9a1ca927868a799c8b50a82d84488a9f793859

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads