Analysis
-
max time kernel
47s -
max time network
133s -
platform
android_x64 -
resource
android-x64-20240221-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system -
submitted
11-04-2024 02:01
Behavioral task
behavioral1
Sample
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
Resource
android-x86-arm-20240221-en
Behavioral task
behavioral2
Sample
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
Resource
android-x64-20240221-en
Behavioral task
behavioral3
Sample
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
Resource
android-x64-arm64-20240221-en
General
-
Target
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
-
Size
5.8MB
-
MD5
1398c9c6999be6f56f2364ec680f8557
-
SHA1
396c173b4c084afc3a2c89044ffa42a3f0e4dad4
-
SHA256
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae
-
SHA512
49ae3724b60f40ac3646a44164fd6879480d895e1096825f484d63d286b5c5b8f2557bdf752f746651504bd038bf9e93dfe7400977e2bd6ba24576843b3393dc
-
SSDEEP
98304:BUlRb+MDHwasxU19o7SDWNYbM2Wlghs4DqHvSse0EpO9X0xUCd7Mmp3/U5uaMA:CKhdU1xWlQDuSsGA9X097MaPUo/A
Malware Config
Signatures
-
EasyLogger
EasyLogger is an Android stalkerware.
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
description ioc Process File opened for read /proc/meminfo app.EasyLogger -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock app.EasyLogger -
Checks the presence of a debugger
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
1KB
MD58b4da3a10eb3d593e4d2629d0b849f9f
SHA1eb6656f63d925bb46b568a106d66afb0f2663969
SHA256bd12b424efba695990ae92db2bafdd2f857bad217fd2e757cfdcf04d6306a644
SHA512ae57e8c702d039314c9b44aa2ffa51035efdc52731569e91edcdb02bd00ee8c2bba374b9faf0e6344baadcd16c78805a3c7fa334a4d25fb0f0b05958a83c64a1
-
Filesize
1KB
MD5053337bd50d965e4264a4bb0d3e72b38
SHA156c0be351a8017f114610747106317812bec9a16
SHA25671c9a26d1dc2ea53b67e35867658e2af0be73af277d3116240ee52d7d2c8cd0b
SHA512c6b40e3959e665c5f9ef52629a1ab5f617a128ff2af6a69e8aa09d6a924cb2ccf17933e2deda17a07a7c6b01e3a59211faee7c4399b39fa206c17dcf5cea1ee5
-
Filesize
76KB
MD5244592a5662464f9e6e8aa5d52402428
SHA1885e44dd3ccf643475ddb16d7d2eec0c809fd1d5
SHA25654b29062aac9ef91d03294047b7780498a2cdf0ddd75028dcebd9b6b7a88214c
SHA512ce35edd0ec05450bb08d6b47583393eea034333b99e13ad2bb6848724f09ed71334a858e5cd5ccb6909d516ae70545c3e7c98ff15673005e25c9ad60b2a11b17
-
Filesize
512B
MD5085fd69fdbe2e4a0e33c15ff241eef44
SHA17a14df62a2cffc7da8041131f90d8c30674e31ea
SHA256cd2c3e3a0aa550b4a45a54b82bf6ecde20c85c329b2784eaf19d7cd2ff4fd203
SHA51222f1654f7c9c41c32a6b2d8b40a79538fb3cb6fa142f4b3c595f94811d340abe2ff8cec5011d68d65adfe228ce62e106e5a38b0255ce24af0456e6fe8c676f3a
-
Filesize
8KB
MD57fb01f4a97573e30c23eb06777650952
SHA158b78a243316a8f7aba4ac59e816f9917b0d0890
SHA256d65042d7eea930cd23372337162e93a0c3b663cf50e161e596b4e72ec4d6ad16
SHA51264e2c22c8a2fb43f9a10d8e5f82dd8f55f779e1e14ad5347d3a1930b02273ab353e826fdecbe6d98083989b1fd531ef54573ab6565ff45b93de2e5e3896edb9e
-
Filesize
8KB
MD569c7a31df318985dd76409f8da6c5d91
SHA176a10a4852afa42be23a8ed5f810644776b78d66
SHA256f8225ead8b60391f7a4d803a04a1bfbbae67990e1b2baed2747f4a90936a459b
SHA51287a5a79b8567766cfb79bafd7152bf1a8110efacd0f6bffaa75c24d83fd8bf4fcd6915b878e1742e5bd3c5fc567b17b505fc810f1e22ec486981bf5c85f3019c
-
Filesize
8KB
MD572e54236dd0f96e4e17a08d8fdf12d39
SHA1ab50d3468a21c5a6183d9485e07f5e5dadd14fa6
SHA256c9c36d432cf60edd3d8acc7a5b2fcf4175def99edf1167c926d8f42bdddcbebf
SHA51236c4de26806c9fdf61cffa18d81f901a781e35ae2e71590ea9f4595a06f3369c78a31e51dd5ea3cf91e583ff1a4a7772a38f3b0aaca40c22fc19d22121d67382
-
Filesize
8KB
MD583a7f59220a34fe8bc5718014df5cc04
SHA115e8ef39de82ac42ed9a4d8d7540ee165b74dd9e
SHA256530fef5821d01c65019a0eb99b41a3900632f561c093c36b9419cfde5c86ebf8
SHA5126a80e5d37230782aa0bedfebfc0c8909f7e42b18461cf284d09c916453c888bfe04040a0bc479b7e4e0d28b78844ecdcd1231e8aa36cc7debb0b323c6dd7e667
-
Filesize
8KB
MD5ed645f30ae4a4479ffe3ec824850b33c
SHA19ea20534c5473fe863348acb76d0b8393549af7d
SHA256da97fa9e1bdf912196677bbf1ad52a1804fb5e803dca92da379861d325467292
SHA51283ee7a186ab93c98924f42a3b0f1fafe74eadbb54a020ae9f010593fb96e36e9498ac52dbf4105677c37151bc9ff895aad827ec9827946f547c8d6b7a896eb72
-
Filesize
40KB
MD515d5b92dcbda7ef7f9ca327a903e46e4
SHA1ca153b66028a58d90346ff8abadbdf01b95c37b1
SHA256e802fdc1ccd833b91d80bb1d8f54cab2b585393e6a07622c4d9feaab07633370
SHA5122352f167ee5aa37cb3438a0a7df8f632771a1d019c5cd120fe62313fb73aed6d0e09186a9bf306a564371b846a8da020f6acd7aede0cc47ca50701611fa84aca
-
Filesize
8KB
MD56ea428bd8cce9ec7b858739f25714acb
SHA1dc33f67fb7b1311bb6366525854f4dca7b8230aa
SHA2567d701670a618a9bc831bb01d9d59c9c6e3cdc066f909e61f810479521325fb98
SHA5125e17e8fcd864719e150122164abcee4056ed3b467312fef5d9f41a3b406c55d45624becde677f6e1a47e63175a1d5e6fcc3e4b0dd0df20edccc7c8f0c80e3775
-
Filesize
512B
MD55232d4193930557aab02058f5cd71f86
SHA19bf6a735cb7dd2c11379298ea5732c1b44d20a39
SHA256d40c3a25d0fdc26f96901817ba600b2d0b89233a960e63c5b12df2e5cde09865
SHA512d664fba64c5abe39db0ca92bd4127230a13d549bb69c52d626f37a4e3fc228198046c6d861e9b96e992f496e61729bd15c7103c2ae36a74e9420c2bb4cbbfb5e
-
Filesize
8KB
MD572fa81dfa75e42a3119a81997917fa42
SHA13c99c3945b7e4aa1b6d4024629e7aeb9141780bb
SHA256381877c5b159f537e68efda59f05549106ffc603269553e803f1f5e6f9084c88
SHA512cb1cc8171311e9d76a2dee601fefd42814fd8feb0746396fb9a0e06a35a2c5f39fac81c4ddc7550e73d26caff5f4d77176a4481a40cfed563f7e006dfce20cb3
-
Filesize
28KB
MD5341182aaf7e1a5631f03c9c7ebe89b8a
SHA12432f67c990c3742b9c5a7710abdc509b41f1198
SHA25601522fd5648e8ce4b183968fd85cc482fb0120d9843a32f538c8acb754eea101
SHA512dfe1755fd867dfc46f2a8245f6dfd10a0c865c0b080371d27319acfd9d5d876f4db0bcc7fd6d636297a74e2ee0b51600e8e880a3350a4c2c6cfe5a4a09aed297
-
Filesize
512B
MD53ad14b84635c0219473ef6b6298fc8af
SHA17a7c5aa7ad1ee4b50521d5eb3fcd74199863495e
SHA256cc1b95a8ee048c28206692c7359d3ce100c41fe7c041ae45c67519c4e8d8de8f
SHA5125b2e9786dd51f28c992fdb767dddbcff62866575410f9d9412d203df862aec520b164f50b984fd8ca1e5532bb86c2643f796e5854852b3c7102fc19840d257da
-
Filesize
8KB
MD51f5fbbc6f4284e046279f207854d2a19
SHA1b014d8fe395efe782bc25cba92745f6cb2879724
SHA2561d1b971853cf408c175ac504865e24945b83bbf4c582ac11d9921cc76e2e9d32
SHA512c26cb6cee18d87a80f202596c702ec45ce0e8e94be07c70171d5261c265bbf094de4bfe9ab5c878cbfbb3886037704636e7074ccaa1b54d348478e08ed76db80
-
Filesize
4KB
MD51e7fff9ccd4a877925d52a0cc5c24061
SHA152483917ac1a1ee46e01c6c19ea6257ddb18095c
SHA2569cfb34105636e056145435ff21596a4cbdd56250f5c271890c6dcf7b5b0f1fa0
SHA512e39548c2c0fa96ac531863effa24fbecd6f7698978578a0a11a14c82698458b3984cc5e4c25ef545cf33526603cdef96d1ad47367a76452e63daa34cd63a260d
-
Filesize
8KB
MD5992539fb05f684abf9a6c93b5e7121e6
SHA1474963d98c0933b820a77c1d5c3c92f2bd67b19e
SHA256db2d9f550abb1f9f65add4727c017265cabfa7059c2680bf4fcb0dd73988e994
SHA5128655a4fec5c586016fe6ed5852dde91d5cdf85502a98d97d4d8d40824d65ebee3c3b844f3610960429eec83e43d54117abada4c47a05c118ad8805d65f11a4ce
-
Filesize
8KB
MD51acd04ceba6ab4b91530d3a9da6bb7e6
SHA1295b6ab30f65c615d3928f29ab8a2403b54f0b08
SHA256b36787590a350041a53b7eb17301ef1ecff779228a61308d33710490938bc28e
SHA5125e5095d2f3decc33c248f635b2aa5a1060787d7985156b602406a1f338276d200ade5caa1309fba3ef96e1a4de8e00fc73d58891fa1d2f8ec934a2c1d866697d
-
Filesize
12KB
MD5b9b0d22fd7b4acdb689328da8bc3bbfb
SHA12a946369b22a179347cb6e9eb0973279632efc1d
SHA25624e03a4afda278948470af7e3e9ee5edc4cd5b5ae6824745b69a6ddb0d72ab58
SHA51297ad35d557894385a7e32074c38cf5989a9a4c8971476d26d5eaf05a5b7c9fe6355ab83cfbb2ce6452917479aa64add2e52d3aa5a0e3a5c95cb677f57e002036
-
Filesize
16KB
MD5eb52a90bb70b76e946b62f50b6f7fb85
SHA142d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0
SHA25648472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4
SHA512b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c
-
Filesize
16KB
MD584b04455ecad08a1d7799261cf4df669
SHA19eb6fb3b8b66a8e87fb1ee07335a81c4eb8468bd
SHA256f3313098eeed8d04fceb2b73c6115bc98ccf82db1e063d9d7e38d963152e439c
SHA512ab784f05cc92710d8692ed5a188cdd042e3c966b477cbac0967bd7a42d627121a42fb58b1a2ccdb0ed9be73aa626a124084a896695d350c63d5bc257df59576c
-
Filesize
16KB
MD532f56bc7a084b7c03bd46f33fb0536b7
SHA1df594162c611405a3661b123d1639c5e1f2f83d3
SHA256c86c077b0f21126e08778b97a65863a49c0f4f3dac976f228b09e162684f2123
SHA5127b1f35b493bf5c6955ed7990610af6f71558aee7d1162b2a5cbf6582a2990778ca80de312553d15904fa23676f07a497efd24caed845f7fd7caed3246c5aa7a8
-
Filesize
16KB
MD5accdc1fecea1a528c794fde721a6fbba
SHA1e549474334e3125c968803cd54dd445112fae97b
SHA256412837f3f68d3e74649cb9220dca6bfde76c83caeaa09cdbeb7fd3a58ea0bd94
SHA512b61b522f2368c137935cb67cb715869c951e0e9d286ff0d3833fe85ada237a6373ad6aa5b3866b5198ac596f3a99db682df0f73868458866bab77a3c0a24017f
-
Filesize
16KB
MD5e370af84fe4dc7818e464283e5bb7555
SHA1302fd2d6db054bd730412b6a85f66e30cc9d79be
SHA256ad535813ff5e9e5b15be286a324152568bec1748b7787a9f665b8c2c4a39a0b3
SHA512f63b86f756045cca45899ce13e3a511032b711ea7ee7a84d43a9968972eb2de77c917f69f0835d0e7139c6f35f0634114571c9ea0d1cf59537c5f241238fbaba
-
Filesize
16KB
MD598d6fb5c9dbab43df06e4e44cb31d425
SHA110b98fb436c1fae52c7d17de7f1308a59622adb8
SHA256eab409f55e9e3b8c72d607619afc31b8069199c890d0971c4905adaa199f3802
SHA5121d8be44f20a1b618d1e85bded1e2c194bb2b42002f96e85157ed27d8b0d7e0c5adbd774ac0281ed11bdffbcd251a8cc606fab9ed97dfe0b8c60e25b06233c5cc
-
Filesize
512B
MD53f7eb16fa80660076a73be929527b39a
SHA16521856face5f185416725874d0a73962a883aae
SHA256eb4bbeceff4b2e023b89594af62858678d91d4148672278b715bca05e6b98818
SHA512cf4603750292b1af335729553a83e0442ab3726dac55651014aa0402acf163d6e51c9e55c87b3e80cc63d8449338dd49d0c86aab0763efe7653b4a8ee66e11ee
-
Filesize
8KB
MD58d948c2420abd996972005930a88e15b
SHA1656dd2155aebbfd2735d54511fbb8b6a8cc23daa
SHA256ce9bdb29a967db8d6c12e750bae3c7d2bbd00410559641004de55c9050051796
SHA5123cbf99f44faf40128de4308ed28cd9faa9e859aa52bd242915491567d8c2452b11192a406a1dbc2b02ef28a349f1899555f55b583844dd5e5f47ccaaf3233bae
-
Filesize
4KB
MD5c02ce4765d52a7158dfd82f8c8440e37
SHA1945e61f117539e4c8262d9b5175b111d0342500a
SHA2566047f0951b935ba8dedba95327092f54b3ea7cb954978ac9396c7c4971c04189
SHA5124bb0c038bde07d16d92d9880821e6cf65c3202326447e51256655cf0704e54845cdeda38e6599d3f1026c69035cfecd4e2709d6c209a1bc34c8c5ba74aa62672
-
Filesize
8KB
MD5d78f64d7e8a847588e7e6c4baee1da42
SHA197f81695fd623be2f71920104b30d3b59af4d657
SHA256aea6ee97d198d1e6339c577eb1934839db827b75d978d1ae4899f28f9ccb432d
SHA51202c1f7924a6722594117fac286d7e3a143eff1cdffafd9c55a3c49546f987067256cea5624f500d6f509655f9b8122032b3c592a5025e69cc73d6eb7a591ec59
-
Filesize
8KB
MD5537d388229c78a48254157602b5cff80
SHA1193232a823bf87dd51263b1514d2798dcae1c2ec
SHA256ba48cf949636d571cb7dbd412c4efd5937a023dadb12f4bfc23cd2fcbdb63c95
SHA5127973764324d2459c522e448dc69b90bb8bd88ae34e3e2c551c0fece6d0f974c532aa9fa5283010193100e577f221228029726f52cb30b2bf2b0c51c395a8c6b0
-
Filesize
8KB
MD58313685548717de0dfea399b5bd29a85
SHA1805d6e7c49b387f84f03350c643580b6892a600c
SHA25654343a4f947bf2dc63c2befe71f7fa6b67ea44877b98f4afc329be3934718de0
SHA5124d4d3fb196598ab36ee0e9bec976190e8a9f3c54068fb444d650041df0bbf0640928a3a3d1cb3ad1e5c26d96f49c406670a681415093a7569a173e52ba879c4d
-
Filesize
710B
MD5a84c390760d1611a8d0cbd8a72fe8301
SHA19e1642a4525c49b10d50011868d5793175d5c809
SHA2561e2f735b9f6a0e59bd391de65312e631a55f6ce765e6058836f14bd2b4ebbce9
SHA512ca5fd93919d1fed55f6787ef7c4bfaec15b3e63a8e8b7c321fa4813fa4f6dcd6d16f671479f2a54f652be4b9840a03730f4f127c2b1f9a6e31bb5b0c22b66745
-
/data/data/app.EasyLogger/files/.com.google.firebase.crashlytics/log-files/crashlytics-userlog-6617447C0011000113A230301B095192.temp
Filesize441B
MD5e2ab052e55fc94e064a3aa984568740c
SHA1162b304f3f6e3b08dafd534b8aeb04a33187d45d
SHA256f65a09c6ba3ea609caf427041f15a3d69a68d29fff19cb468dcfff7d72344c4a
SHA512d481827c5a0d62e5cfadb9575eddc959e9e30b3b234d95ec2987f6bdbcbb1169cff331412975d38598f42f40756c29d9efb51b70d5e2ae4bbd804fb1b5a1d6a3
-
/data/data/app.EasyLogger/files/.com.google.firebase.crashlytics/log-files/crashlytics-userlog-6617447C0011000113A230301B095192.temp.tmp
Filesize16B
MD5c33583fae4e0b61cde1c5b9227963237
SHA1fe2ebe4d27469af1460f7e852031a04208ef629b
SHA25635c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc
SHA512fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e
-
/data/data/app.EasyLogger/files/.com.google.firebase.crashlytics/report-persistence/sessions/6617447C0011000113A230301B095192/report
Filesize733B
MD5b93c81c53205020e755f701544efdee4
SHA178ea4ad359c9bc9821866bf16910581b9403f169
SHA25685c65463097e299e4057d82896da78c932924c4b60d47e40344dfca25b6b3ff7
SHA512e63c0f401e5d310f908c463e5393a22bd1d769aa69f78aba4719a4830d2a2214c133daa16fd3eda6c792bb126fff0d1188218741855bc1cb6ea0753d0dd00303
-
Filesize
564B
MD5ef99441f9c5d65ebce85655012a656ef
SHA1eb3a86ad35966ed880caee81d133c4ced78444df
SHA256c2dda51abe746fb508b7be3f42234c86250c0fe26d90030dca86e218231385e6
SHA512e39234e58314174205f14736b2e6c24a9e5abb44274a7db3423c56fff0bd68cf896a97f2f968506d6d99b711ff4c0e6a632ac11b969f03a8a00e987bb3d0ccc5
-
Filesize
90B
MD5cdfad1cb6d0030f4ed489bd79741d7e8
SHA1a055bc084f5bdc9bf0131bcefd41ef5a8749e441
SHA256ed2249f5c9dbffa9ebf36a70a5e2665c9a5fa74a0729e9d8a936a804b4e7de1b
SHA512a99d5c7678880786d378268e3c700aa3492182d8d47f137a826f98d54a312edd80fed8d56a2038cf16d95473bac98abfd82c02760b1ba2722280b3753b65be3e
-
Filesize
36B
MD51b2cc0faceea8d2ac8f62219aca4b4b0
SHA14d11cad20b1310c6a8c2494cc10f6fcc302b2f65
SHA25695078ed63b67116c47f51d10e1013b3fc890cc920aec0b7f688479ebab4ebe8a
SHA5120fb66dd98cae36462ee26b15b7e7b6c90776c42ee52c2f3aaa0848624f10bb072b81586b95aaa8bff2b450b6a3373778322099127ba376e5e0a4f0aa19524f5d
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
512B
MD5619439aada5e0acf74b1a89eae41bb77
SHA1fa91c6ba54df8ddc42becf1933a434d98679608b
SHA25656a83b66fc7a798a1db84a66cd12a0b88bc24f48214af658eaa8ebdb24a67011
SHA51253172b9dcb0358b5f038b0a61a5d102aa6c7016ee4e80087e0749313e87a57a6296fe37f78a8b2faaf5ead549475062466caa6e7669659d3fd6ed01c30e9c0d9
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
16KB
MD5a44c78ce526c7efb098dcb86ba824706
SHA1e0bb2f64ae99e3e1a2d097b36d759a489e84193a
SHA256e121ceb46800de62f81ee425337a433597f55c82ff4093361f1f734111ea954f
SHA512422cb1813083cb0d186104e69d9174e0358f77c5d4d96540ff9880dccf4eb36bea9262368aaee7840f30e5b2e620906987caa867948fe53fa907cbe9e5c98ea9
-
Filesize
108KB
MD51e91b7fa7d1d95b6f6574766e33c6cba
SHA16c90be595c145f496fb01eaf71b1c659852a8222
SHA2564d40a4403125f8265c20ed4c69efaccd04235a5e49473f2969af668cf6e241ed
SHA5120372b63fa9bbdbf5f678f1ddeab23f2a6c90ceb2e019c3badce51f0cf6c1ae7dde0549490b5ef9a5810a66cdbcba32456314d7ff7dd648278f14ca15493d72c1