Analysis
-
max time kernel
48s -
max time network
153s -
platform
android_x64 -
resource
android-x64-20240221-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system -
submitted
12-04-2024 01:56
Behavioral task
behavioral1
Sample
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
Resource
android-x86-arm-20240221-en
Behavioral task
behavioral2
Sample
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
Resource
android-x64-20240221-en
Behavioral task
behavioral3
Sample
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
Resource
android-x64-arm64-20240221-en
General
-
Target
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
-
Size
5.8MB
-
MD5
1398c9c6999be6f56f2364ec680f8557
-
SHA1
396c173b4c084afc3a2c89044ffa42a3f0e4dad4
-
SHA256
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae
-
SHA512
49ae3724b60f40ac3646a44164fd6879480d895e1096825f484d63d286b5c5b8f2557bdf752f746651504bd038bf9e93dfe7400977e2bd6ba24576843b3393dc
-
SSDEEP
98304:BUlRb+MDHwasxU19o7SDWNYbM2Wlghs4DqHvSse0EpO9X0xUCd7Mmp3/U5uaMA:CKhdU1xWlQDuSsGA9X097MaPUo/A
Malware Config
Signatures
-
EasyLogger
EasyLogger is an Android stalkerware.
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
description ioc Process File opened for read /proc/meminfo app.EasyLogger -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock app.EasyLogger -
Checks the presence of a debugger
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
1KB
MD5202ecef1fb26696c7812782c90264d60
SHA1314411a1d60302b8d5a3d6577bf2140ac01360fa
SHA2561bc903bc4906ba5063453c58fe58ba5f5a59aee3970242e23d7f42805d0cc24b
SHA512e29a85544fdc4afcf5f10679abb764f03f0819ee3bf86feaece2046e5de8903b903d2d5896bcf69c038f8444f6ec8ce815dd27bd969663ae9b6ddc0a734b6afa
-
Filesize
1KB
MD56fa8dd5444f6a087f8db5607c91db9fb
SHA189eb4e1ed051c963034396cf97ff3ecc1a5cbea6
SHA25662b4999c2a4cd83226627fd96f6ffc595a7c3a2cfde856cf4594f52f2f27bdcd
SHA5121792becd349ba21c016df46f3a6019564fef3f55429a0d31727b48058e8846415aac6b3e7efdac795aee5645d76ad8c2dde742db75cbb0e11f3ae3a25132e67f
-
Filesize
76KB
MD5244592a5662464f9e6e8aa5d52402428
SHA1885e44dd3ccf643475ddb16d7d2eec0c809fd1d5
SHA25654b29062aac9ef91d03294047b7780498a2cdf0ddd75028dcebd9b6b7a88214c
SHA512ce35edd0ec05450bb08d6b47583393eea034333b99e13ad2bb6848724f09ed71334a858e5cd5ccb6909d516ae70545c3e7c98ff15673005e25c9ad60b2a11b17
-
Filesize
512B
MD5b104cc04d879521d83bd65fd6f437f05
SHA18ae80f7b1260d5a56ff6ccd77b824761140ccfdd
SHA256ef44f1d17f348ded009a5b17a1ea045e15a8144675df2f7039e938db8de4a945
SHA512e5544c2842f79bb6db97ac5ed22ccaf90cab656e2fa79b28dfb553f2cafe499e20c3d819f04e886ec742c1854d2172bd0b2d86be2d5641be157d6b7f649022d1
-
Filesize
8KB
MD5b8f0858dbb86a03f05aecc98e940c99c
SHA10bfb7c65f56d1300d22158f03e602b079e1fd57d
SHA256e8c8d6fd62e988c81bfddf62aa840f96e1eebf1db45372caee976bd3fb9f64ee
SHA5128640c50096b0a32bba631eee95b33fadcf82f9eb4d7604273a9c08f1e14764ca86570614de0efa49a0dab2c492d7b10e4df6c7476b6d010421f1846ae93e4974
-
Filesize
8KB
MD566202c68b147972d3f1039b4d79a8d1f
SHA11c42fa8561d3ff0cc3242bb9fed9d24f5b800d59
SHA25645229579ce671a8a2d40dfaacf162603f6a374894c7431742492f544c8688c5c
SHA5128f848b70395f6040b08b1b1cef8baec9099ef1bd6d53c3d532d32f06f3d84df2b8ccee1c4c8591aa790896856c5968efe9168065611f1194b22cf029563a6d76
-
Filesize
8KB
MD5d46fe8420393f87cde616b7c968c0def
SHA16852d1e608bc31f19db2eb93c6c635ed5e212990
SHA2560704f5db0066a9c75e348837dc62add3cbf350526cb50b745a7a2223548f81a1
SHA512b8d6cf51f2af36effe60d84667c51c6934649eba9b459e3391a8dba645fb2311e813d5306012cbc9dc53b6f53df5bd86532b1f60296eb0095499917931fe1269
-
Filesize
8KB
MD506893c33e827fc2d0eb68c7da47a23a2
SHA187a1aba98cbf7558620265df7fc9ea41626e9c4e
SHA256d943247ccf852192398eea49e0797ed239ba035479f35b73adf008b80533fa1c
SHA512af6c0114808be9eae9cc0685135c23598684a3092fd143140d7fd99090fccb13c0a4f2996001ae07590a13967b272fb8c871ca928f893b90113168913065e3a6
-
Filesize
8KB
MD594e87c7c041b06b42fb522fa696cb382
SHA1ce3925fdd999bb0c42b0c91382523c3e8348100e
SHA25608d1c7bc1f2fc7b7c98f8be979081bb35b4839fcfe7312ec2725c69661d1dcdc
SHA51277c13e3e6aa483659a4600e9da68feb488da404e4d650a3fddcb7ed8fbdcae9d61c4ee72d928484e968021952884de0f06c404922c7a26529a517647949715a4
-
Filesize
40KB
MD515d5b92dcbda7ef7f9ca327a903e46e4
SHA1ca153b66028a58d90346ff8abadbdf01b95c37b1
SHA256e802fdc1ccd833b91d80bb1d8f54cab2b585393e6a07622c4d9feaab07633370
SHA5122352f167ee5aa37cb3438a0a7df8f632771a1d019c5cd120fe62313fb73aed6d0e09186a9bf306a564371b846a8da020f6acd7aede0cc47ca50701611fa84aca
-
Filesize
8KB
MD5957cb41efde711f99a06b0e4759f1238
SHA13a3bd9b310142db46d8f8b50a4bc729342ef7d6a
SHA2564c29993d432ce495645f45f7cc50800d2a24916a32f81d85504ed9d66d51d744
SHA512279a2d9c1d137ac2b28ee7fda31ab4a5b5d7cbf513fa77b43e91bfe481ef619f48a96bd02aae838dc09f3e2cdfe992115c2118e07bfde53a87ef529dde511cf4
-
Filesize
512B
MD5bf8cd7edbdcb2236bb846bfe6a41f66c
SHA1de3106e5fa65d954d2638856b63001f10caa65d1
SHA25662214aadf86b9e2110a7228704e9951577dc5c69bebf5ff43af60cbf627b2b67
SHA5125a1d1cb95c39109f5259bab2b0d9baa6a798f1ccaed6249b7bf513a458a5e7b1b1e2e8831fe01d2b5a320fd64f1f4cc7bf321dbada9ee024c0928fa865501b44
-
Filesize
8KB
MD523c95e67c9c656c0d84dae98711ced2f
SHA184c51b7c303cff9d362d2ba2259028f71a2c8464
SHA2560213a414201fbddbbae39f12690e86af2b9dc7fccca0638bb68519aa8ac5ce74
SHA512123c771afbf93605d978627a49d120db2d7dd63134eba183701565dd84d231de15eccc9cd5016ad895726f9e7523d520c4c80ad8a9e1033d7ec925d6d8f7d164
-
Filesize
28KB
MD510c27435116911af58216363e707b6b3
SHA106259ca4e2da39290e3b025f98d3904125f31f52
SHA2568badd6f6e6c3ad2e124aa274645f379e7c5181a2027b08c40745da1d4972f141
SHA512b8d6c577c9b97b064966d1a959569f6170e8b79defbef2b5db6940cda8de450e3c1e15163ce41231acd8301200191f47738269b35b50f3c25e60c8e95eaa81d3
-
Filesize
512B
MD518c3665f19b5366c6e49df609dceb3ff
SHA1ee93a42a730bb9ee5612d1be852d9c8e56af36f6
SHA2564fa118d0b5b4ba6f98001542b441514ce9fd09b923f3717c401fd3b8b7aa001e
SHA512e2dfc0dc301caaad8cd1d74b9ce34e18ad0da7e13234af3e021bf9f92bc4c4e9ab083988b254d253fff0dc355552d2420d2bd8e32a429e79a79ca85d2a593bf6
-
Filesize
8KB
MD5f9fb6e99bd3b94804c15db31345bfb35
SHA19433b587fbedda396ca7ed47d4fd9b1f4c91286e
SHA2565398fa61c379b8ffdad83c8aa1e27adc74a34ea84ef113fc46a2743d74baef1b
SHA5121276cf80ccb0ee37be53ef9468ef1dd52905c9cead62168e2eab6e335dc5dd9a420c6f030f33ed821add25d1e824b360b4c834660f10282037466cbd41c35410
-
Filesize
4KB
MD5bcc4f91bd71ea40d260a68f2863f5fcd
SHA14c267c3fdc8861e2c0c5a3278d8eb588eef065a0
SHA2567852a95299a51a6af408b9a3650bc6343fee1fac9409f7a3d44373e8f9d497e0
SHA512252ed4e2662f2724cfb1d7aee80ab157b7335c318e87fcf22098bb0204cbf04b88c26ce8af27f638bc4cd1ff9cad83a71d6a1b9ea2aaae44446d153285d3e8cc
-
Filesize
8KB
MD5ec8089cb5f06897097de6bae0bac2ff3
SHA1f742b0d516a4d3bc42a9dfc7fc0767db986770da
SHA2565766df96eac09c845741f9eef1f22f3c0c4833f8441e414045ff1f85a51e0c6d
SHA51258f47759e0d48662e7db99d8316ee9f8c09361426f7d086b58fd87f9b05052dffc2b5d8b6e75bba920b7cff0a212ea3f8c8f8f82fe5f0dea178d1706fbe65309
-
Filesize
8KB
MD5421e320f9468f8716a86fc3240619bcf
SHA1e78491a54ec89cd6a83d9b555ab2606ca11a5415
SHA2563ae667decdeea73c79fdff1b4ac8a4ca3c85de9498902960bfae481e033e64bc
SHA51270170c8b64d78f85284fba14ce6af0e96146ae30ae190a8392b1f2ff8dfd80073927f9b9bdb0addfaed162603c3e5688934776e14129821378d5745d9d3f5453
-
Filesize
12KB
MD555b272954bbae01a0a52acf1d6690841
SHA184ed747f7bbbf2c641bc3b78f46225a97d62729f
SHA256cc3532ec9f52080448375fcda31f9d8558ba9c206a02e1214d3951b94e22d8bd
SHA51280950a3ee5c9b8a841bc0b21d1e746f8d36a570c41ed8e8ee4807398fb73c08ea38ff9be30c84f70bd28df73de1c9b574386cab04d9644fea51b9d6e3fec783b
-
Filesize
16KB
MD5eb52a90bb70b76e946b62f50b6f7fb85
SHA142d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0
SHA25648472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4
SHA512b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c
-
Filesize
16KB
MD5d2ee70642c3847c21ff95292227c6e1d
SHA12d8d69457e6ed1570d999948d2f2d0388af1dd82
SHA256f95a773f9db1948101883c8ff09294d939cfb7703700786a94251992085b549d
SHA512835e1248c3c7e1ccffe53ef367e2525973bcc83664bf41d0354a95a7325e557b26d496f257ddb2106f64a54ac5db15045f7e6b9132b779e3848c9462eaf96204
-
Filesize
16KB
MD599baa3ec93720d2f62ce65e923d88db9
SHA15d1f322f1f68e93435175d0dfac42060add062f9
SHA256cbc7bb2c63732f9c64eadf4aa102fdbe6decbb4e06e32102db78338331c953e4
SHA512e9adc1a5889252263eca3bc8d1642e5e7ba115b29cfd0d91098efe8830d3efbffb5bba8e3fe5d3c5683abd36903228576adc4ff57ed47a6eee1f3d124b6af524
-
Filesize
16KB
MD5a03c93c11f8a3b6cae4f6d976ac1b221
SHA1c5e7f7fef03271a05e78730e7fdebe2511d22059
SHA256492b59e1aaff20795f44b8a81eba4e2a3b7247256f21fbb83c6ea9023d5ea0c8
SHA512d6789eec5ac6bb6119f090accaf6b79aee6e162d5f93ca44726f7c39591bf6d2726c1d42d7daeeb1fdc8903f820097591093bd2460c66cad822a63184bb6bc31
-
Filesize
16KB
MD5301debdc30de852030614aae24cc78a6
SHA13f2a7eb7c8eafcdddf9d162ba313e59634ce294a
SHA2568211a6672ba9af4b493f6f5db46994f7d4f1319783d19525542e5bab6ba12c34
SHA512e1ba5798ac95c15a35a8332b3d7c83075885cd25fae170327b9c9912a927ebe653525e3dddaf8cc946198aa208fadd597ae39e6ef61017f778eee2e1e6766cab
-
Filesize
16KB
MD58c1a911946e07a71830aa2154a44f087
SHA10212ee870bf6982461c4bd3f16959c6ca4ef3483
SHA256d6888b81d3cc128a36f319728c94cd689f06285764ee4c68ab3383f55b3a80fe
SHA5127dbd5b4b352e89279b905b8b5a89200695582c52bcfe5c0a20a60aa07212277f17e8b4840930915a337c898cca8dcaf35e84413ca636fa7c378a9986e50d985f
-
Filesize
512B
MD5842b93d0feb68263efb095162fe89647
SHA12acb7e6da6de53924633057d479c1bb7fd8500b7
SHA2563623fced2c24083080dfd44a8f2d09241b9c77edb5599e5a97ea70e29327d2d6
SHA5124027eda27925a7b98da34713f854e70e2bad956fd326be9bdb763c7d47570a755b17497830bd9b09d165769459a5ec3dcf9b6f79fbec9689c79ac7b3e14a1942
-
Filesize
8KB
MD5895d5b8956fe7b2655b5c22f6dd326ad
SHA145407db547ae98e794df4e3972db0e29d42e044e
SHA256ce492cd53bad973d6c1ccb05115e502a55b7d308e482ea7aa517dbd6700a07e6
SHA512a2408243db08a61238f24d9e3838bf7afeac91b16aab2790ed11553a24fe54f400c09568a7640e39c5311eee5c6c7dc443e0e80331ce0e728060f13c30970c21
-
Filesize
4KB
MD51c5c7104b767f786010287f6cf09a3b5
SHA16fdbfebba68a878e63d57ec68312e84aea8eb07e
SHA256802dd532fba3de18fdbd71421c7866278a36eaa27246498c9fc5537f80ba87c4
SHA512ced382d63abaed16f3348d6c8f9b1d22c647e22441b0790083498185853d2599e64f3a0ff79717555db904490a13469f61dfd6c75f1fb3a34cb0ff793adc2a66
-
Filesize
8KB
MD50ca0398871c6a63228e8e387000b55f1
SHA15827dfed55f645d83050b8eb78e7ecc094c02033
SHA2569a5a451984e12f2844ffbe283d6f9c9df976055d76a0d4060df52c2d0874c0a9
SHA51212b1684d3fa81470a611784536eec07bbfe9d28cf6349301834558e190b0e24947aaae968da85add81e7aee85c8f16676ed96d099d3371e871ea17c2ea1ae8d1
-
Filesize
8KB
MD544ea56311bfbd04d035ec2e4b9bbcfe5
SHA15d8ca843a808a6a5cd9528a1583c0b608778b2d4
SHA256fd828ee400c58a03ae2954fa437db4aeb1c232856424e6e7b2f64878e0dd6cd3
SHA512a4f5cb7acd992970e80d8b03928acb0b7d247fc88b52cc1eaab588311d3161c836cdca97a5f45d4c2589c1d1412d4128f91b7df38ce409bed289ebd8e2661548
-
Filesize
8KB
MD552a9fb628e890a984e4c1631b7baeb52
SHA13a017ebba7fea8dd07c5a464e132c9a8d2d762b6
SHA256e02eaf94bc9876afd064d45ff3ebe004a39dbdf68fd235128bab49d0fc222a0e
SHA512f98d34f973bb53b2694f69387225784d87400fa0bc943439c27e9f17b8e60dd24544329035c93d2daa7668e64653d3ee650986d1019d6a4470fab86fe5a89a2b
-
Filesize
710B
MD563fca6ce30d40d453c7c2b4a7e79f25b
SHA1f7eed2a64f1b14e88d299581f7591ccbbca72fe4
SHA256c56f56e5b23e4e1b39e85f802256302ed3ea823100c5c4ba96f63123084d1d7b
SHA512399c31b42908b15f106a45601dbfee9df0128b04749739402d59c412efe75da6b40313d562d2331defe7900e183057f1c24cffbea0637c6ce818cce878f43da0
-
/data/data/app.EasyLogger/files/.com.google.firebase.crashlytics/log-files/crashlytics-userlog-661894C0003B000113D8BC20124C0D71.temp
Filesize439B
MD56eebf81cdb67e5f330847aef24de0fcf
SHA1a54dc5558d5029c68427a113260eb8fe9ec78ea1
SHA256166a27bfa565b3ee62ab820e3a1781df963b74bf87887e9d0963fca83dc541e7
SHA512b0d724d4a5e351a432117601e512dcaec78d26b03191c50cfb26be8eadabb51a60a2f3aafb6e5a7e412a065e3aa3500f96976ece98ddf917c59a2ac233aa3a3e
-
/data/data/app.EasyLogger/files/.com.google.firebase.crashlytics/log-files/crashlytics-userlog-661894C0003B000113D8BC20124C0D71.temp.tmp
Filesize16B
MD5c33583fae4e0b61cde1c5b9227963237
SHA1fe2ebe4d27469af1460f7e852031a04208ef629b
SHA25635c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc
SHA512fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e
-
/data/data/app.EasyLogger/files/.com.google.firebase.crashlytics/report-persistence/sessions/661894C0003B000113D8BC20124C0D71/report
Filesize733B
MD5f6b6dec8ce516204e11532adbf57fc4a
SHA1ae45c42dbde1baa9f7424ef127490671f5e486fe
SHA256b1a2b4f604fdf9e67289299aff658a2d45cb43927c08bdf6808dfdfa126ae4af
SHA51269ac923925f386c2cae44653178821314e7089e185c3f684ae7e2daf3073dcb8c9e99bea1164753520e0b9f6874cc6b334d0c952d69d93d5598e8ca1ffc3f7ac
-
Filesize
90B
MD5518c0e7dabd834c75d498ead8d26bfc6
SHA1f4f546026ee252f57dd4d4be9eb0f2dc9f4d4071
SHA256d58d9f57daaab44a6ac0459e454764d7565bc1b06c921e942c83322017fa598e
SHA512c0b96d7400b8c2aca724a06ab7404fb7123dfb4b54f6852d6d0bcfcad9de9007bb402b0c43a0322cd228021cf1225e4659201bb0c3bb45491f80868e89aa148f
-
Filesize
563B
MD54103e8c3c5e2be8d15a897e9d265e82b
SHA1e5dc1ab5b6a197c3824468be6ccacb3dbc1904d4
SHA2567166e9505d6c5d32cb6b8b991cc923f16e08900abb4684d36ba9eb19467eaa52
SHA5121179e852bcd6d1d02b7c387720c2d0384fce7a12d7f66c63a630525c0d64a7a39426d4ae6fef4fb764e9080e6456eef93a6609c08e1cc6fd50e1d717ef2a929e
-
Filesize
36B
MD5080d33b47b58859cd3dd207f6672d3dd
SHA1bc61ab5846c888119f00b183a7aeb39eab8f6f03
SHA256519ba8f64e023adc28d2f93547b73ffc09aea861d60ad934fdcffc7907eea882
SHA5123734728f6be7cef1ca274ee525fd2875459171687b61b862219428b3b309762e9eea098adff78b03bc2635aa0ef129d1208d0ce402ffeeed215c88371f7ece5d
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
512B
MD5ab14656b8baa6dea43b9a3693b5a5415
SHA1470e379c765d4ef85541d4c0a2484d7d424ce6c9
SHA256d2a8ddb41fd03f108acb653d3e3f64342b0ad9930e15cab04241455665809f9b
SHA51286c516c98420ef451358e7e74898631782fe271441f4296603818f535bca2e7a25e8bef7cd38b435c49eee013b64a0980e2dc4923d119ba37d5d46e0df51edfe
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
16KB
MD5fd5a72ba05741eced8a0075279ac0cde
SHA1362c18cbcec7466441b8da08b81122fa610f302a
SHA2566ea65d1a541dc2ab3f17178ddd2ba3098b88ca993e5e2bae178e5dd67d12c0f1
SHA512e7d56a81b2993904107be51d729a1480d3c20b20f320a1ebfc60dd5b06c623c9d38aaa3f731ac0eca42bdd5e8f50487fbda225bdb4cf0e36ceac1e3c5274cb60
-
Filesize
108KB
MD56047c2316f96805f22284283ef1c1f88
SHA1874d114f0b08bf19548ad00dad151135c51a1617
SHA256b6d4911aae95d3a11db2c5fe298afe7ca36200f904791ced73228711944d86d1
SHA512ca9015053476d77d5ff110758675eca43ab299d3bd9b1dcc8901436b1db8d98a3f3b4cef1c712ddd20273de92e53375e2a1b96d3df8b6116e51c56d5d454dfc3