1352ce38dadd5e7ff5ed7d0a84cb04e12534061e5aef645c650bdd06bd2d5847

Analysis

max time kernel
11s
max time network
141s
platform
android_x64
resource
android-x64-arm64-20240221-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system
submitted
13/04/2024, 22:00

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

1352ce38dadd5e7ff5ed7d0a84cb04e12534061e5aef645c650bdd06bd2d5847.apk
Size

3.1MB
MD5

68ee0fd56511f904fc45882f974a0f7b
SHA1

faa1582fc352a495b02de0cd43a9d4c05987253d
SHA256

1352ce38dadd5e7ff5ed7d0a84cb04e12534061e5aef645c650bdd06bd2d5847
SHA512

3e68f71a2849539a1b7176725796f5f5b2023252be82d4b85cace0c1b5cb6555c0e46f6fc694816d68af65d5d9c583ffe46fecc703e897aa41d0d2891b6b3d75
SSDEEP

98304:BRVqKyHGwhXCUzTIDPwMZ6hyoiIm1rZdr4fc/gg:EVmwhX1TIrsm1VgE

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks memory information 2 TTPs 1 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.unknown.god

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.unknown.god

com.unknown.god
1⤵
- Checks memory information
- Acquires the wake lock
PID:4431

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.unknown.god/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/com.unknown.god/databases/google_app_measurement_local.db

Filesize
16KB

MD5
13b4c524d5c4b2f16ad59bdb8fa771e2

SHA1
8f1a9edc097981633cba93df76ad6e390a29ab97

SHA256
7d9c4a37862ed92422d4107f9bb116784b2c5b55df78a7f2a0c1efaa7d296e72

SHA512
1430a8bf759c921e7110c55231edec64eedacaf176bf9eb5b86dbe97aaf7bab19183bb44481b3de9d44166ebd9cf668963ebc52c4d591c68f99854ba8739231c

Download Submit
/data/data/com.unknown.god/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2829c4a45ab31bc2831e73e22b1c68f4

SHA1
5b7738550b9d342b572dbb9ea538deb2b548d706

SHA256
a45951a5342f91c275a0a72475c79e5cd53601bd7af0798eb34c88f185e30396

SHA512
a18b6fd96429707e8117e9f1cb551506bd0a56c73a6c43fad186ce042bc8ab084e320922b94e3f4588851b38270c3220bc13d806b78ebcff3fa40f4e87e92fbb

Download Submit
/data/data/com.unknown.god/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7f1ec13b4f129a37d18506979956babd

SHA1
696ec0072c05944f3ec0d80255f63567e905fece

SHA256
3998b736e46556dfffcf3fcbc78e859a0e4662fb6616b86609941127bfdf80ab

SHA512
b0324ea5dd9ae46c078289189d8c5ebb93b8013a0c5829a14e54188861ee4c13087c91519f24ac34f4bc068c81c0d1dd3e5f1fd833bf5d5a9c3e259c9e2391d1

Download Submit
/data/data/com.unknown.god/databases/google_app_measurement_local.db

Filesize
16KB

MD5
4485ef04c3ebe0482f3ecff33a41b269

SHA1
60c1d40dfd9e3d6a9cc01aa94ce566034bb5210e

SHA256
72ba5f77fd20389838a60ce3bdbec7209d4e7e95904927c9a572ca5b9f6d73b3

SHA512
04a24f7467b190bb5fe4b3b612ef77c729c3d6ba25baa4bd82af62c1b187e69bb991d2add2a393ba5e1883bdccd8d27f1c7be69b4d2a32a660c116662b603930

Download Submit
/data/data/com.unknown.god/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de82e2c94d2718988804b035a46d17b1

SHA1
705f5ff19093ad209f2a666085d6ccaed3bf58a4

SHA256
29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

SHA512
68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

Download Submit
/data/data/com.unknown.god/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/com.unknown.god/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
9179a2a28204dcfb1d1b13f52ea35b86

SHA1
cb036679b14c01749c9c9ef24d477968d7d13d29

SHA256
21f6f21d04ca30cf03d62d89156f348adcf2fded8426b868a2ce37e1bf02e0fa

SHA512
88f035f615d974e6ffa718f3d21ff67c6dedcac5e1593d0d496d4fa6ad030338dceb1adb54d9c3932c8768437f14bfb1350b591e1617af81a6ea3d63f7eafcad

Download Submit
/data/data/com.unknown.god/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
99e3457f189605e3f9aa1cfcd29568ad

SHA1
2b77171d827a7c601327ccfefe8390780bc0804f

SHA256
573247e06bd6f0d87e0963d7bafa0eb695f7807b3e7f191ea1236484351c5c2d

SHA512
8c2107f8a61f42b97d88e6a328158420daec01cacc0d6141f038fef5b202e05230cd0f7627b837b5d741208589cfecedc71effafd8bf1ab32b10dc67ee0a3cd7

Download Submit
/data/data/com.unknown.god/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
10f6704366d4dfbd896253c3f0ed826e

SHA1
4fe679499908d45a0ffe4e5479b91c6811d3281c

SHA256
e5f57634b45e2096cb6d69d51e34cdb42e9c70915311b84f5128f487faf5a625

SHA512
83a348d950d3a542decbf5345b8073b83e84026213cc8a4ebfb92a796f714c470d3695a4a766add938255ac33b71e1f7ddb08af917b265c4772c8f1e6a456af6

Download Submit
/data/data/com.unknown.god/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
29bbfdaa90842ac658748bb5572656f3

SHA1
0679e1ddcefafd18a4220dc29c77294ed2bf9ede

SHA256
d7743e0ccda62e20e29d5f821301b2aff6d17299f161f45e3f9d88f288fbb584

SHA512
5535d7e392440164c261f4aa9b630cd9e2b9ea6062518337d61cf920a669518712c99f9a4b4247f5c35a2301704ca94c2e982d83f3b9245effed713891dda4ab

Download Submit
/data/data/com.unknown.god/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
01efc46017fb88bbac74604a20c71b1b

SHA1
d68fbf308881a8be79884610d5aa4df388972f8b

SHA256
ca54d43ee9ec68b2c86d21cac5d5c47b22bdc2d17fb3875f7aeed8647f1071ab

SHA512
300d6ca01c7e854dd20394476a8fd178babad9646c429e98031c16f5f5b3faba5493b5fc8095b1e966171c3cc652b222c6b5f28f420ade18297f2dcc136b14c7

Download Submit
/data/data/com.unknown.god/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
33075fb19d56ec85e62da705c3cf9879

SHA1
7dc9452f1993aade2105485e21d8f24574f3d91a

SHA256
ab108f9b302eff748c5c9754fe144940d0ccffb5360f27dd4f8ae56d541c94db

SHA512
38829272c41e0f73e06ddef293b7dd02899746d1933eb1ab1ac316084a36b09e084c0f092043d376ad1186c50f0e34d5dae25964bbd527786f60f13918f7722c

Download Submit
/data/data/com.unknown.god/files/PersistedInstallation1133409832814789788tmp

Filesize
565B

MD5
a5642fc9139204aedfd100543510258e

SHA1
6281dd044531fca3f209c93eb49454afcf026400

SHA256
0462d19e585b5012854e2ca13da5543452e2f8839cf5c05098e5da99394486f1

SHA512
53b611e85ff7064410bb271d76168b683956af0fbbafe2948836b90d4acc9d9b962ffedeea28bc638d127972a8e127e765e0321ad7c5adee19747c75de5e4b82

Download Submit
/data/data/com.unknown.god/files/PersistedInstallation2225318181772779249tmp

Filesize
90B

MD5
4221e829842c7a895942143789e4257c

SHA1
fe2b59e6cf50c28c39978ee13ba9429e1c613774

SHA256
7d1e0ab2e23c5d24dcfd349ecbab600089f39ebfa078db78d22cb22e8a519997

SHA512
e83919254daf4930c586bbe95abe802aa1becff7dfc2c73ee712e1a61e64b971fb535038de87a645f2965df8d12c0ebe62520aff0ed5e69181ab145b47f69ac1

Download Submit