Analysis
-
max time kernel
48s -
max time network
135s -
platform
android_x64 -
resource
android-x64-arm64-20240221-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system -
submitted
11-04-2024 02:01
Behavioral task
behavioral1
Sample
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
Resource
android-x86-arm-20240221-en
Behavioral task
behavioral2
Sample
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
Resource
android-x64-20240221-en
Behavioral task
behavioral3
Sample
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
Resource
android-x64-arm64-20240221-en
General
-
Target
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
-
Size
5.8MB
-
MD5
1398c9c6999be6f56f2364ec680f8557
-
SHA1
396c173b4c084afc3a2c89044ffa42a3f0e4dad4
-
SHA256
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae
-
SHA512
49ae3724b60f40ac3646a44164fd6879480d895e1096825f484d63d286b5c5b8f2557bdf752f746651504bd038bf9e93dfe7400977e2bd6ba24576843b3393dc
-
SSDEEP
98304:BUlRb+MDHwasxU19o7SDWNYbM2Wlghs4DqHvSse0EpO9X0xUCd7Mmp3/U5uaMA:CKhdU1xWlQDuSsGA9X097MaPUo/A
Malware Config
Signatures
-
EasyLogger
EasyLogger is an Android stalkerware.
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
description ioc Process File opened for read /proc/meminfo app.EasyLogger -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock app.EasyLogger -
Checks the presence of a debugger
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
1KB
MD5cc5ba3948e89bd3192ba7d6e179ebc64
SHA15e67975061fa88f104f2a210336423ce74ba8e06
SHA25640b4d319c21e056b0af56fb4f92b728edbbd67fd8e7fcb0849b0b9f176808bf2
SHA512cdd11d99d679256ade1199bc25144fb08a6e323495e3789ff941379367f35a2d30a796aacbbcb62171ffac881f24cacec0f11425985bedcbbc20c5732011afb3
-
Filesize
1KB
MD5687cb8edcfe424b117cc638669abdd01
SHA1288ce0e7ba3dea896306215aa64bc4239d5b56f8
SHA25696be02732332cac23717cb89e83bf846e22f70c14e4a36cff596e85d72db5cd3
SHA512498b31447b1fd53fe1a3714e475da4316c69831f60604950c12ea8a819dd10f21a5650ca2f4129d11ffe529fd8cea180b53dd9ed0f4a56c0e04ff34be0e66f7d
-
Filesize
76KB
MD565e41370cf11c2718cf78e9ad13f1f86
SHA1a8a58e529c8d41223840640778bd8961d73505d5
SHA256563253ea278be27154c894cb4d7cfaa4a653509f0b1ca54577988d92b381f9d1
SHA512c7291142379de850dd9b5992882d866eb50969dfe531a530f8f4144c67c7d8b39f77243cba13cbcc731658e192cd845ab817eec6c37411d7029b83668ba47069
-
Filesize
512B
MD525ddd6e8cf821f0fe703c0dfe859b02d
SHA1cb38713361f69eebf89d3d9aebea6cc0d1fbd9b9
SHA25647f22c92e73c94ca93f74c3bb984f6c77dbd855c07fb1e7f64497061b823c6a9
SHA5129c2f2dd175d98834245bdf045c34192d3ef8d3749a3097a03e94472e2e2471a7038f6a86fad770bccfb8cd6fd9f0a034b54939c0487358e79f4785a5045dc4d7
-
Filesize
8KB
MD510709f47ae48fc2a5b5a69e27ed53a76
SHA1e263ab1426a7a6f75555fad1070bc69f1989c63f
SHA256eaddfe52ff5441f9978dd0f208b1130427e45c5deeb71149f246025cb34d5b04
SHA512b1b5a565dd514aadc880bbab863bb92bdd5367544dfd348aa87ca5cf50f842df834b3b453b7f1d4c4d0bb2fc49eb911069ccd1a8608eb9542f690b830d54a6e3
-
Filesize
8KB
MD5ab4a3219793e61f10b6bbc4b49c5d291
SHA109a5673337480748a356a05d40d86aea798dcc2e
SHA256cc592285711eb665e6dbdc4717f1527638e9cad1f95200d9b6ea0bf1ef705abe
SHA51239e92edf00fb98500ce1efe67160b4e38bafb4f920c5e5a06dc974407ffa5fa71e940e55104ee70aa0ace2881a7682e1d2125631f01ed3b9691e8b999a00d065
-
Filesize
8KB
MD5cf23179d24583a41f291969235e3ccc1
SHA1882be8db505633e3680622e5a82776febea4eeff
SHA2564eb7f18fb378d32e348178ba1e2814165ac78caae1729a62c0ec8b058aebfdf0
SHA512d9b670d9193b1e4f8bdae35aa2b4c26fbc9bf0a298c7c76e8a2810118c30db7ec555d0b5598b0a9d45113de0012b779a7454a956e83aa1f2bde4a59190ce73e2
-
Filesize
8KB
MD58f422008eadca5d97394b0e8e4bd63bb
SHA1e2f2695b0d1ffe662c0fc0e0ce8d036f2d56b4c0
SHA256ae65cca451a3e3ba35bcef275889765f71a57b17182d312c17a5cc569d91ec00
SHA512152c44ff33ef6e694efd34f6bb53f9f2dfd9e3e5838b6d4a754aa4bebccc8788f80d74269438729739aa8c8c1bf1dcc47185df959c4d38ea845c4a62e3b0a115
-
Filesize
8KB
MD5d8bdd48ff0d15b7e5cc84497a5d3eb75
SHA14cc958d1c0db0245a6bbc5c4aa8e78b6bb0ebf84
SHA256286a24ee86fc9c8f49e1ebe944a0bc820e66e6a1c8be3e80da3a319bfb106721
SHA51279a4701e7ac51efbeceb44b8626e2afb33da867731eb376c8638d450ad935e75ac92b7b4ac07221e668955c742939ab9df17fa07ed917ceefe88ab7423149611
-
Filesize
40KB
MD51cf3f63c021d755a21623e6d0e86dbc6
SHA1e40e0f1faa61abcca7ba3394c54c92ff7334b49b
SHA256100c67650ba652d547d8a1128edc550a8e95541a1d9268a199d1b924294d0895
SHA51238d72e14f3513ffd26989cbda3df46ed3dd6e731bdfae56440eff6b64760cc13f91014281c9add61e018fe3529e49c63a6892ca22479515816c768b546244466
-
Filesize
8KB
MD53a94196ba185bbc144b9df2568525159
SHA1e732bbbfb48dfe4da92ac404aa44005e6ac65a59
SHA2567e7a5f0c891e8292ed46b4caa05b1c923cfb9d1243f81ebdd3d0a4a07d744cf8
SHA5120e6ef5e4aaa3e746568ee2533835b555cf6de758d4b8dea620d23e9cc536ee674afa451e59f5777bb2890bda18a079689c675a79ba52c7d7bb8b28f0bced2983
-
Filesize
512B
MD5d2be28d77e139a819f602e44a7ba6f97
SHA179187a4e967de29808f578d10d956a4113a8d335
SHA256df65549e535fa21d1a41552b988800667ddb767361d9dc4e3305ab8497aed9d7
SHA512b3e8cca84f2f69ade0a927bb3f0d0f62857df0e0cf3ba5af70f2e586763f457e2cb8212e11993009499c4cfc370cf91cccb0d49bc6dc8be350bd9b3e0d5e574e
-
Filesize
8KB
MD58bfc1c32d30e875a778c4174b5515aef
SHA1619cbfbc11084684587737f3f4687bdbd6c15647
SHA25660c6b4e3cc5a265775d048e6c59f133feddf1e60564b0d1abeef4f0dfc80950d
SHA512a9ce3242bd90efce3c1bea803aad1b46031b7a9361918fbbf31b1a8825865857cc7dea613d4b4b60530982025f5c8396b99985483d28b69a9ae20d00b187794e
-
Filesize
28KB
MD587b7ac8d665fad852a3b9269986cefeb
SHA18ec99fe9e644ab0966f7c389cb5a2552b5e2e470
SHA256449aae394d65d052cd676bfaea97b155f002ace5c69cc29f9775514773d188d1
SHA51207615c604add418466c095741f29a6c31da81c30940cbd4595f01aa5d0d1e4734146fb2d4c181b7aebb622e49bbb23ca521d4ada47a9d2ea5fef07de0fdd3c99
-
Filesize
512B
MD587af0841b629675ce0f4886a6f68af20
SHA16c90707e9353f08ed22d57dff61a4dabb9b0bb27
SHA256e5372659d6b543805e3827849b2cf38f73db4a85a13b654a36bd953a9a03ec8d
SHA5124213cbe009a1835ac4fc4924896a7b28e4932c0ebfe62b8d933548118db3b9a5a163a00dc4c330ee62d64fc215bc66632066d7eede36b91b07e859de281a00b2
-
Filesize
8KB
MD5c8f7d6515fc6645611bb0b03172dc3c7
SHA141ac55d720ea0ac96b68d56d9ca504b5f5713824
SHA256e497cc7ef52ed4334f4613dca44d19d50edaec8be752243a8ba5f271c9fba7e9
SHA512c8eef58c505b025aa2619e575467a30b2506e5528f2c57e515ff53139830a7e59559f179d14b15ebb92ea776925b1d48c86e21bf26fba4c29530c35aed79d0c0
-
Filesize
4KB
MD5c59eb31950146f790ae4451dfbb8b855
SHA14a4d04d6f1fd382fd892ebdc1ebb5750231058a3
SHA256c61be28a4de14097454ae3fb0c50b356de211de12f99498d8e58bb7d034627bc
SHA512eb2e9fb6ef7e31cfa257e2e530767f8d2db8198b93f23ce1461891fbfd9928d49846022a4d14ff958c60e8f082349e2103009548bdf251d4b9dff93f5fd25cdc
-
Filesize
8KB
MD5591fc3fadf3c718774ea956d7d5638df
SHA14426113a65f622991ec578891a7e212101022faf
SHA256681483ece3e03d2169fd1bfe71a2d387e6e7e2915c54242d733cd1b14e25eb74
SHA51279779c6b2bd2197c32603f3b2d8ecf4c5b3700bb3603a939b3ec5b5bd85421e65eaca8dadb0f5ccb554a4cc1731bd704cb5d744923030a769b7000e8bb11467d
-
Filesize
8KB
MD5f7189e6dd156d7fed3deca8bfd1e2582
SHA1d00cc45300d1a7e291206d993f5b2caa77be43a8
SHA256363c5d2aa9e4f7d3ee4e956b9e71c21bb9cf4c82540571accc55ac1454a25c2b
SHA51244d9b4117dc139b52e0a00ec6dddd9cbd3246b56bb056c87258a03553d0d2766791c1c1cea5426c70174e57e7000133769815c60188160507a48ebcd155de9a8
-
Filesize
12KB
MD52e4bfa9068e888687c2ce8981f991dba
SHA17d26ed3a05ed97aab6ccfa392f316f5daea72336
SHA2561fbdb62297df0feb23fd689a5cae831b76b70a5948f9523281f0c0503f49d170
SHA51231485fe33edc65e012f16b8dfacf0e1a64105cc38789b976a50d783f47b3bfcebad21cbf444de59c934f10ddb5ffd3b51232feb5fdd4e80b1c8f750fd539f69d
-
Filesize
16KB
MD5d9cf75fdd1c2292d986f6c3d5d60f2c8
SHA107ecb1d3a26d952ae5fecf54f36699ab498510b1
SHA2562d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a
SHA512442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb
-
Filesize
16KB
MD56e33a57b033f250eaed3cdcfa1b5fa94
SHA11c2fe7786db9f1838977dc5a863398d5921938e9
SHA25609847f4c80f77ec34c8f88319526e1f041b5d655bc834719a65e190bec79cacd
SHA512c892471d9eb2b65583ad33fe75a5ae95805b6d0a4b66829a67ca280aa95966c68f4177b4bb859d8d7648b86bc375463970afabf75f24899b388889ce6e90be5c
-
Filesize
16KB
MD5601fa5423707d39cd630625b894f24d3
SHA1b564c10cee45f4d705a75d142a0a7ca871328ddf
SHA256ba552533303b2c91b89884146f4c80fb97bc5a3b68db7232530f58a804ac019c
SHA5122f9a100f359eabb62e7d374fa19e7ba350ac8dc05de029a6c638da1b75fef663449d27ab25d292fbd6e5c96c667fcf4b9e08d9f9c597840bc6cbd504928372c1
-
Filesize
16KB
MD5ffbbb3ee0551247bfba00cbad1d2c568
SHA101f2051bee8b0906a5d4afed0a4681946a95d8f7
SHA2563d05f4f84db87c29d95ac7ec186b01f16ae39ec92b645a7de897d96a1c59b365
SHA512015f60e7ff8404e44cd4daf0c7141e97b2a5106174590788169608ff3b5a6dc424fc2fbf65a195616d488820ba0031efb270b9459db93505bf24642a481668bb
-
Filesize
16KB
MD5c7d6862490a59cd2591536ef13221aae
SHA17ff86f6a19b1c93665898c815246f94ec250f546
SHA2561cf0ee82525bd0355fd67d87d579e8181662feaa9afbfcb7eef4a8376e562c77
SHA51295576bb1ad6806383bd8f1fefc1c31145514fbdc77a3adaff829c9fe46a954d2a6eea53841c670ee03468450b815c4bf677d215feda1d6626c7079a9bb8cd7ea
-
Filesize
16KB
MD5a0325ff5668f4474177bf7958d70a597
SHA1f9471cda55083be6cbe3f62cfb230b2b317cc4de
SHA25671baa9bc34c3832c1b0a51c8aa3bf03424c6696ae37147861da52fcceaa0f688
SHA512c8365efeead343b31fbb858caae4f8b1b6c9fcfd04dadc3bf4e39a600eda4fc4540a727a023cd06bfc28374a21e0655cdb14a680e202383710823032c8fcbc26
-
Filesize
512B
MD5829ba0200a4f6ccb407d8129442553eb
SHA10eed16139d73f8bc05ebacc69051f67091e569c0
SHA2568adedccc511ab8614b05e3605e9a307f2517a9f22957fe7508df3242110b58fe
SHA5122e9bf742d4a3f59c02c7885691ea58d0b89b91e433c390eb9a8ae8ab4fafbc0b649e474429edb6ed94b02cabc5e1802ef70d1f7da902006327d816e61d5c52d9
-
Filesize
8KB
MD584df8d38aae1c2b644769acf748810b2
SHA115516ec6feea47cba334aefd43dcdcaf4d360eee
SHA2568a0e7684e8520f17ed5d03c675aee1768be8250991b4e3d0e330f24995e46468
SHA5127761d536c698bdaf82e4026cb775543e69a1e8a1b914ea455216488a3b8e36ab4bbb7e6271226529595ec5f82d0f10d8448d86e7f3e1470deaba8bd8bb7ceb0e
-
Filesize
4KB
MD59251daabf8c8f45512897673b7cce62f
SHA1f652fb590b8da4b610eca3a52cccbf5fbe0778d1
SHA25671cde54ba35c5cdaa23491fa2d55d3dfafbe4525ff24948dc6159db4224ef620
SHA51209e1b8c875746ba5a5fa1ac6eae1763af05a43cfd7976e422920072efc51b7e6839d0f8230466709a7bf3a243302200640610bc0754b7e13b5e3ec26d724f0fa
-
Filesize
8KB
MD560ec0d2215f04fe50ba810c36fb4e525
SHA163ba455e647f26745b2667b295259b8843a7eb62
SHA256d2a5375561dfc274740f8d5da0a478a71c4a14aea0d289751ba934bc51f9eea8
SHA512aa6d07baf68050343d550722a45c80a9c4f56842805859792fdfb6cfd4ad0c31072f5ba225713866fa049b0431d3e23ce76b267b472a2665704933145b4d523f
-
Filesize
8KB
MD59397156128bb19d9c30ccbe06701a104
SHA186c0ab174fa17a1e2b256d64a100f1f04a8d6fa2
SHA2565a5b3c0918f6030635b74b1f607f006016d78f862f3fbe4ffdf55beac5d3db51
SHA512772d0c17c13afc5c6307aae6cd5d23c946a33e6ca6f33fa174842f5cdca17fa1225dc0093f7483c13faac1910a9a39b28d36e7bc62f4ec54c8e6e1aae8479cfc
-
Filesize
8KB
MD510fb6ccee62dade62243075d3fccdada
SHA1a56c762de4f2a7f8cbba395c6ff9a7cc2f743dbd
SHA256f041b3f88286d5bb9b280110fa200114766e5b18e60e5c37badfc74ae6176666
SHA5127e42961ad81fd45ab218013f73ff6c50a28e5bcb7ed18b5e0bfd013f16ea17f36a49b69a796a710397f92ec072fef517eab6c34838a6d42a395b945e7b0ef2d9
-
Filesize
710B
MD5b7e3ac60a0a465bf1ad110a8267c2320
SHA14d781117b0a80acd85b65bf5f8dbf3753b1c414d
SHA25634595c9bbd4cde49a1b25992c1e928c160deaa03921982e52628a9274ed59fe3
SHA5127356ae9d38d3611186b2ae2d17ee9447b5a6304d257dfb601df8e9aefd1d3e7f9092f0f66eabf500a97648ee34380f7c45043f198e28cfc2cd44e7cba2a61319
-
/data/data/app.EasyLogger/files/.com.google.firebase.crashlytics/log-files/crashlytics-userlog-6617447C00E6000111168EC87B0CA59C.temp
Filesize442B
MD5b8c8a0910fcafc730cc8d54ddddbca45
SHA1e26335397adc554bdb0371c5e3b20238d8715d18
SHA25625fc57cd937795f734c763e53843c7cfdcbc5078a79a816fb891383189e355f7
SHA512f2d21db31544f2c73334c10b5b98cfcf16aa875a69a3742d1b7937a41f8dbe1abd7879a6e947d35958b671146c137185a5dd91372a9c6a8e157d5de13e96dc35
-
/data/data/app.EasyLogger/files/.com.google.firebase.crashlytics/log-files/crashlytics-userlog-6617447C00E6000111168EC87B0CA59C.temp.tmp
Filesize16B
MD5c33583fae4e0b61cde1c5b9227963237
SHA1fe2ebe4d27469af1460f7e852031a04208ef629b
SHA25635c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc
SHA512fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e
-
/data/data/app.EasyLogger/files/.com.google.firebase.crashlytics/report-persistence/sessions/6617447C00E6000111168EC87B0CA59C/report
Filesize733B
MD56000ece082879f943ffd7d789bf8710c
SHA1843af82726e12db5afb838ce2c260a0b2b79c06d
SHA2567815586cc18ee4751b1b32493d9c193f3bb35e6645e06bba9d4cb47b70b623ac
SHA512d592dcd613d5fc53bec6981c1b9bab560b716a1e7a99994cfc89d22304f3887a205d522ed881b3858456228d01aad16e10d9284504f1727d33bfe601b6a4b1f4
-
Filesize
564B
MD5eb1770d67168764aeda8248ddf2c1579
SHA1f8dc4d4a9a684f185c92c0f8118a5ee09ef75aa9
SHA256a0e5dcf0f67308604b96487b6e61a9f5bddcd0a0c925b228cc1810b19d6fa1d4
SHA512a7f0b7b5f12f04abc93202bccc1b546bcb8608694524ecc6ceab9e148a6fb91c26e71011381f226205a14b2db1b05bb8d5606c79a7e5548a1f0e6618cd82c464
-
Filesize
90B
MD5b80ea058bbe01c3ff9f07f91ed66e18c
SHA167ae58aee9f5af69b7ca22904ebf822478d34941
SHA2564f2ca443630bc495f43102e4083ae1562267b94089746dd72b0ba7b311658aac
SHA512dd23be8be7f53247918b847f1569ce2d3f92fb7bdb33d523ca832041cbe95372277d18bf81e7e37de526dccdfb494ac18a7286feab79ccb1eb927dabe7b86eda
-
Filesize
36B
MD5d95c4c05ebe19f312b2e3882bf8a1b1b
SHA1f807611094b863ff007115e3b2a780afb3e1681b
SHA256db2c515232f68ab810402136e6729cddf460b7ccd06e804e9ff9383e67c13c8a
SHA5128d59f01ad36d744ca3168f01216c9f98b70fd713a04ec8b6a6cc0c2c49da004d528b5a1710bfb0f93bd04bd9771751dd4a0e08ff714866a0e5f9700b75220c99
-
Filesize
4KB
MD57e858c4054eb00fcddc653a04e5cd1c6
SHA12e056bf31a8d78df136f02a62afeeca77f4faccf
SHA2569010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad
SHA512d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb
-
Filesize
512B
MD578b7949f60b6cdd6f383897e25fc60f4
SHA1e3a8c06a96d7e58663738872e85320a79ffeaaca
SHA256f3305ea3bf253c07404af833741ac60d4fa3010e96cf04d71bbca3f72356b687
SHA5128b4bb9dddb3f882579d7135f0a6c34b48b1c3512946e406fcfb9cafb9144308d0465121813e936565782aaef2557756be2c377090a28f1eb0bd70fc0e14a8983
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
16KB
MD5c9dcaa39f53d1d42eb110fb2da055e81
SHA18d6422e1ed764a1a420627a093fe78887f96a4c9
SHA256b0f7cb29101f481cf9c6a1bcd61df049aace6970c852cd209ea68321c9ec57c2
SHA512994d78e23bf0de7eae2b050d7a439ad924e1926ff878e3aa67ef8c4244ed61b3375da867d5bc8b435c7d83561bb6d95396292cca5234eef873471c3c64a516b2
-
Filesize
108KB
MD5bdca3cb7b8ddfd40a7c054f866699aa0
SHA1a7a07d73cc05b94f45e21a5d28d282860beffe69
SHA256212ac3a474327d276b9dbcb3607676ecdf1c3300796f591f69f5de731c04df89
SHA51236ca3151ce9119934aa63a1ee70bd66680f3d3e40cadeef91321499815268ee2e50890fb2a80a382097c66496a46e8b77dce4ebc5e8713e17d7a3725ea6b2f12