Analysis
-
max time kernel
47s -
max time network
132s -
platform
android_x64 -
resource
android-x64-20240221-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system -
submitted
13-04-2024 01:48
Behavioral task
behavioral1
Sample
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
Resource
android-x86-arm-20240221-en
Behavioral task
behavioral2
Sample
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
Resource
android-x64-20240221-en
Behavioral task
behavioral3
Sample
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
Resource
android-x64-arm64-20240221-en
General
-
Target
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae.apk
-
Size
5.8MB
-
MD5
1398c9c6999be6f56f2364ec680f8557
-
SHA1
396c173b4c084afc3a2c89044ffa42a3f0e4dad4
-
SHA256
798fafd34288fe8439dfd609d2599f234c6cf63b047f032d872d228f951c87ae
-
SHA512
49ae3724b60f40ac3646a44164fd6879480d895e1096825f484d63d286b5c5b8f2557bdf752f746651504bd038bf9e93dfe7400977e2bd6ba24576843b3393dc
-
SSDEEP
98304:BUlRb+MDHwasxU19o7SDWNYbM2Wlghs4DqHvSse0EpO9X0xUCd7Mmp3/U5uaMA:CKhdU1xWlQDuSsGA9X097MaPUo/A
Malware Config
Signatures
-
EasyLogger
EasyLogger is an Android stalkerware.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
description ioc Process File opened for read /proc/meminfo app.EasyLogger -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock app.EasyLogger -
Checks the presence of a debugger
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
1KB
MD5585f03692036ab0f767dd1a8c8260ad4
SHA10cc65fa634363820658440705ea5c1a30c730bb3
SHA2562c9b6b6cbfeb57a6df450ab9f64530923676f6845e111bab838246e39f65ee05
SHA5122c0f170f30f9c87a8233cbb97474cf33f721faf107a9241b324f07e6aeb254852849e2d07a61c0dc492ca21597fbad7aa5a6734458093487625fcfead19cada4
-
Filesize
1KB
MD58bacf2bcf5fb5b5badefdcc5b916907a
SHA1160d09dd17172ed4f9cba7a1a6eaa756ad0cb4e0
SHA256d6dfd2ff49fb94eb8020ae756ef9dfb746752765d218db01a2c78c11ce41398f
SHA5123329b468329e4a815f0a1bf87c8a022a4e9a1dc1e5833411f741ec29074c07b6dfd106a68e10e1f3cd76882a158fbd21460cb1ea73cabb9aafdc4756e4f89869
-
Filesize
76KB
MD5244592a5662464f9e6e8aa5d52402428
SHA1885e44dd3ccf643475ddb16d7d2eec0c809fd1d5
SHA25654b29062aac9ef91d03294047b7780498a2cdf0ddd75028dcebd9b6b7a88214c
SHA512ce35edd0ec05450bb08d6b47583393eea034333b99e13ad2bb6848724f09ed71334a858e5cd5ccb6909d516ae70545c3e7c98ff15673005e25c9ad60b2a11b17
-
Filesize
512B
MD5636b551511c37ae83f56b07e2cf4fbcd
SHA11ed1f5142af24f814929708741581592b45c34df
SHA256bdb7fa3b9300c7be89e71f0b439dd463b615fe76ba2d661ad1d01679c150ed28
SHA51271448382d47f4d219845bc28512dc37dcdb3d029404056594fbda305608c8df94a1bdcd2d3a66356def1a1b32277808dbc8745c81e394895c4bf390a097ec9ff
-
Filesize
8KB
MD568805c085dddf346643cf16c81272c80
SHA1456d63b7b8a90bd08360d30254083c26748e1d26
SHA25654da26b5606e7aefbd9dee934cb6406641a5e4d9bc6bfbd6c406278949b45956
SHA512e98e058cb2b753420b22423dc59a17de12114f27642a7a0786277ba286e8c0bb74e2f3e524e7d05600a53a06ac8226b1bf4abdbc2921b3589f0ee0e84fac551c
-
Filesize
8KB
MD57d14046a5f78d2609c62e99607728452
SHA1b0f57e9cf36217faeda6c38c72e3b1cbabbf801d
SHA25654f6af971ce8312a0d32fa77cf3c823872130af3121d43cc68eb501a07382d6f
SHA512150936b934edb6c51454b380b2839db804721b19fb1b202a7395ddd4331e69e91a5170be86cdcc55131592e761500951aceb9ea7b8026260a3b0eb8f0c2c7a7b
-
Filesize
8KB
MD5cebaff83bc3b1feb00f6d5413949d0c8
SHA1e658c68b6159436324c7e99536a0f6c0ab14912f
SHA256964712697af7d7ec77dc451cec51772d6f7bffa3f429383a886b3b5201aec367
SHA5121b39ec80ef383e30f220c5995f62af9e0f8f3bcbcecd01b0b1aad3451d6eafb44ccc14e73fb334dbabf423295edfc148749495c1cc5942fa0cc32c65ca743b53
-
Filesize
8KB
MD58b9211233fa0d2d12ec0b7cc9f23918b
SHA17f7d317d7533559830270d4fa135568c53604d95
SHA2568978a8d97e6c37aba41c697acd40f6d17a85a941cc1f546cebeb52bd69114900
SHA51236467bf6b10ad98cd44e6bd59007094672b43ab7575f8941e81747daf88dba25753d62a46ca49ca2a03efe81a10657f92d38708e61b85bb8069860a0213296d5
-
Filesize
8KB
MD5f928a9ba24b46bb56400e9455e84c14d
SHA1465ec00a62b1f76dbb452390600ee119b242cac9
SHA2563b4ac45fd685c141cfdf0baa3534377179f49efece71ebee8098ca455026af73
SHA512751648b5f9d4342a947727bc997ffc8c25a715faea4165ca9b8322d4b6a25c6e3c263f08761c5aaf0fdad872fe9be1e4912b894c47348aa02cd964b4c321540f
-
Filesize
40KB
MD515d5b92dcbda7ef7f9ca327a903e46e4
SHA1ca153b66028a58d90346ff8abadbdf01b95c37b1
SHA256e802fdc1ccd833b91d80bb1d8f54cab2b585393e6a07622c4d9feaab07633370
SHA5122352f167ee5aa37cb3438a0a7df8f632771a1d019c5cd120fe62313fb73aed6d0e09186a9bf306a564371b846a8da020f6acd7aede0cc47ca50701611fa84aca
-
Filesize
8KB
MD5c35ba72649d91620f37004dc1133b611
SHA12baf792a6c3303b840c4c814eeedbf4d024cbaa3
SHA2563386dc602f39aa069a4fe185ce763ba800d1789fc24c1085377ef08205cd1c38
SHA512783d0f02abcaeafcdadf071ad742f79b9d2872bca86e61e6beefdad816b82f552e73a4519871d3b94042093340ce99a9f1853e892f17bf39f520da0277509449
-
Filesize
512B
MD502f362eada1dc13d0cfc735732246b0d
SHA1a98d9533cd007bd99e26760ad06d19712997d342
SHA2564b9587c331cc9cad28240cf15d57d59a18e6fd664ef03295270ac0a854f37d83
SHA512076fc41007b00f1f5649d7d72012b8b50eac2a8272a5a76d7b528a6a097a5848a06e95dafa9f5337cba197211e155e4cbada56c0f9f05eb5ab76ba31a175a3f9
-
Filesize
8KB
MD5a802aff242e22e5b26db325d961e68fc
SHA109278c874a39055dd02050008736df091f60eee2
SHA25633fc6c7ef418a0100658f9dce12de09c4bb1d9753b82a6ed1f72a9a564c22b38
SHA512d55d1df71f2b98328fa382aa788bf8f0349c44b32667e3f34c96e74bfb913cbb3083cdbab9b11b55daa56c95c304d631a772da61133d1b627697edd55cdc668f
-
Filesize
28KB
MD536081605f2e6623eb6d6a5db5ab750de
SHA1271ef5349a1c4e810753307a67e07824d0c1b854
SHA256102d3a638e60f82e4c219d54121b0dc586c098cf18aa144de5a201d3ee0306f6
SHA51222d6cbe31da2e11997df62081e2eae512ef6182c3fc8b64ba1a9185166b131a039394f2389965de7f1c995e1332a4ecd3b88dd7dcfa454e89423dbc5a7f2271d
-
Filesize
512B
MD5042a0745dc29db5d4889d110278fd8b0
SHA1d2bb76aac30cb00562f44cbf4b85e268fe523cf4
SHA25657d3bc00b8417526e38011b819842b4b36e9c39e1ad3ac0df0d562592f95e580
SHA5121efe81d08edc56b9ce6f048993334c77668b0b9a19bf84898c8cba5eef7aa198bf32a627fd7a29afa001dc06b869c7631dc3dc758bd2d51f8136fb3abe98795c
-
Filesize
8KB
MD5199f059d5e549aa56b97c1877a86e189
SHA1459d7db5c051c714d9196f626891e03a90610937
SHA25689263f386069ebc02fa12a2d78c937899d08dbe2d5faf39a7774024b87e4cddf
SHA512a102432fb47e292383a37f3bbc438aab4a3e84eb53edce26ed9ea34bc74e558944d7154e0eca89624c41ebc6edba5a57e5603705b8c5ad2d0a9eacf617611edf
-
Filesize
4KB
MD53fb01ad7c6a4884925ce05f105fd8be5
SHA10e58af4cde4cd0fdc9c6c8ba9144e47b2d899951
SHA2560144643a19f224bba0c0117e0c48e7ffdff4c08dfebee6a48aaad2b230614b13
SHA5121a501623e373037b786108f227eaef6cf39e8ac1ec07b2fcfb891531d6c1f0d3b86fe2eabb9f61c01b84cb0ce18b7d408ce77d9135521e2af7e88987b938348a
-
Filesize
8KB
MD51eaa18015e271048fb3b77a11d360df8
SHA16ef17d1cea26925d4b884d1132b1891609b98d69
SHA256f39c9dc97ae04290eb4aee0d988d3ae7057e799d81ec243054d98dd3c2f3d453
SHA512f11f3aca57a8dc877da9018323051751b63ac87de7ede50f9c847ce2636fdb4d250010efa2ac9773b30169e74fd426de2a27af3e2e3daade92f348c68a16228d
-
Filesize
8KB
MD5008c23b702ff31087e7921649749e0a9
SHA16bd7a916a54f5a49d96b77090a85f436b828785c
SHA256595df14752c84ab942bf706a17c9c1283c905518baf78fd4c03e9970be71410c
SHA51292d8232027faac60168976963870c3c0e14cba478ea618236e398c99d77b6ef4583b086deeb5e16b9303d3b2ce170a219c45e0e049277548813d22ed3a16cbbd
-
Filesize
12KB
MD5c421e56eb1906a91857b4176f8677de3
SHA19ef9c5f10642b97ec9dd77b0e83b4cff0dfa18b4
SHA25623915ef7c603f2fa25d0023a0d423e78dbc83c0f286857f715ed6266ca6406c1
SHA5121eade7ad60a0cebef0d997bbac044e06bdbe4d32264e70606037244bfb71aedb1ac6fb3608ed146e240aac6bb2814b5c1de804b2be16020d17810e43f51f3a69
-
Filesize
16KB
MD5eb52a90bb70b76e946b62f50b6f7fb85
SHA142d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0
SHA25648472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4
SHA512b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c
-
Filesize
16KB
MD555abfd93987dc3c01ff8ed7ab25bb034
SHA194c184407405b511ede6cb2b773d52bbd27954b7
SHA256aa1ab095884f9076544c013646de855132e9086bb57653b5533e55f188ae323f
SHA5125da523912566d87f9898e26bad25ffee019cddb52a2c65bd9322218dbaff974410793e6702c26211a3e0010f90873d28a5ef775b88bff4a775437220108749f2
-
Filesize
16KB
MD530b5d31934daaedeeaa1f0cf8255ca38
SHA1f24a4fe3c8f1f716d470b82c6835ede4bb299562
SHA256cda6234f5196fcbec22d37c1b17757fa98327dd0408977858455d52108ca8576
SHA512c2c7d3cf288ff6e8c2cb1683e2bfa4a860d1b1be90c078627852a41d1574a64fbd5f0561273890d49198123e099a8eb1873de8d9d2837d07cc29f9fe46ab441f
-
Filesize
16KB
MD564a16599b3e2e7f9c310869b83f749b3
SHA1269794a7ed0b07463f7810597db015c236b5bb3c
SHA256afce2db91eff9eec362f33401e9c1931211ea6ac0146f4442d5a497ab4c78afa
SHA512d1abe47dde0b614cef6e59ea2384175ac0139bbb8ae547c9b5dd4de03e9b57ca132faebe5fb197134a3414e7f7eb35ce24004d3b84b1c32fde6a7f12f1f7f8de
-
Filesize
16KB
MD5ab98970a916c14e6e8a9bda3b3093a4a
SHA10a960a356dc1febe94996b20661cc99510d429b6
SHA2562e31db56bdf8dec361fcf754dbb0a9c16f3b5e45e187a86cb7ac9e61ac17de94
SHA51213ab029f925ce3ff3bbfe3619ba652e94da5f694a610e809fc3c9d2197198969a671c709ab59b33fe97708b889129754b5616a4385b4394e7c49160692dae59d
-
Filesize
16KB
MD5eda96559b53540b070e486f526a4cacc
SHA1ace2f4645a2297d178ff849a13c95b9432445307
SHA256b535b1cc36838c013324c98e411f043cba25a911479a14bf498ccd52a51b3968
SHA512438403f921348431cd8fd0cecf380868e2dade89978c25a038b86447017a3c04f78f3f1ff9ff610cb1adb12919854ca66656918526333896ef39e6a2502133ae
-
Filesize
512B
MD5c1223b6351c7320f785d455bf1b99fe0
SHA164c3bf191c18ac8f51d6eaca212e646b764b92bc
SHA256856d0da990c3f230c7ce58c11e8eefd4b705945d9c881fff53b70b5f1f57b1f8
SHA5129f689d85884bf2fc67f921a1f2ba4d4b1eff11edbac4d74b872f3ef4c63427a821f45ca86d9881ca2c2cf96bdeb1dbcf396b9eee6639fbec1313e6bf0c757d1e
-
Filesize
8KB
MD5cc4e3dfbf83cfad5f6b26631fec4082e
SHA129b32c3013c2b8772cafc7dd98915e8478158b0b
SHA256a1991df4e308e371d7d546d7823e4fb8bf70f5a91e89926b9bbb9822921146a1
SHA512da1dccfa464a02c53aaed3ef9b2b6d1e5cc5071dcb146da889d96c00146ad1f71181fa2b1b9a71307f4eed447eee91b2ab57a82cc6e74d8902dc0e098c0b5854
-
Filesize
4KB
MD5aae5d1e70da8852d95f003b24c647cef
SHA17322205b5841fa5e06f3ff4aa76e9fb40a11306e
SHA256ce8ed8b41fbcbcdf0d9e9757318bbc10aeeac64793ab7a8595fe71ca9581de55
SHA5127bc9ba6dc113ad0f174e65771986fbdbbb4f88ce617edbe89a81eba33473b1b7998fe54bd7c49f79ecf464ad3b290e8b40cab9510a0931ca15e7d56b16195041
-
Filesize
8KB
MD5454770d65d855fc51dcdbccd3b77b7a0
SHA1171a5b12a0d9deae1f20ce14fb032403aa5061be
SHA256e6a8c9a896f1810c4bffd36415c7d98b9638b1817234336607773a3afd4e47d2
SHA512982b4513aab83cd7aa54b78e242e8bd4ded8d0f51ac74e1147f07e4ddb7c127c7a88c840a8e92296fa1fb5aa7249fd5d8327d3a2a6b372de9c1b7ebbb2e46b8d
-
Filesize
8KB
MD531730956e11728fdd8df9f1a8fead1af
SHA1c95d7bb7a730482cea84f0c2f16f057ed58beced
SHA2561e1000125a3f8060e7439ef6076f1e823b387170f3d6c7fcff1fc8cfcf5c4a6d
SHA51261f47b3ed9112cd317f882479c00c41cff2dd07e6d089c2274a7673fe8d999a9c4a8c768adc13ab234f71e20839f0c71bcd870a774f43074cf26b17b463a1431
-
Filesize
8KB
MD51c2ab0f9f1f0c8596096418732435e99
SHA1c24d76e7b6c4e95a907c4072b0bd66ec40c79484
SHA2560fa706e8c907d1d140b53db34e4747644f7b62312bbb8532ce8974b2208630e9
SHA512ed24114b9efc3fc4520ce7ef1e05474e26349d7afd3d21ac435cd79f10f05880f07a244ed8fbece652d44194ac8eb6498bf45e60188991123abfaac2bca2851e
-
Filesize
710B
MD5c467203cd519bf18b5ef9dc72d3f803f
SHA15ed07e803d8180bbd4d28fe4bd2d3e7805d18eff
SHA2568bb215e5884ee261dad681b79ced7b022be14a535dd655ce1c78bbe5dd5eed67
SHA51267fcf7ff85aface941d27cd47c4150e42d098d92d1eef7f93a756077aa7b06297750e11cdd5a64925347ec54406bbed764ef9fb4a2ffa2f14692f7ea590544f6
-
/data/data/app.EasyLogger/files/.com.google.firebase.crashlytics/log-files/crashlytics-userlog-6619E464030200011388DBC3E2FBE839.temp
Filesize441B
MD5d79d0c79de7d51d3af8a844b4e636bd8
SHA1176f4aade9c6238b0bc708f030e91d957344f89c
SHA256179ac4ada836d88f68d92055a06968e0179b65843844a0d40663e70a7bbc4bed
SHA51295e4f88c686f99d9160456ef940950c048b2d48729d880f940f4b7cf6024e3e6884501a6d31749522d005fdf292376023992dc8299f818b245ebac1221ad9307
-
/data/data/app.EasyLogger/files/.com.google.firebase.crashlytics/log-files/crashlytics-userlog-6619E464030200011388DBC3E2FBE839.temp.tmp
Filesize16B
MD5c33583fae4e0b61cde1c5b9227963237
SHA1fe2ebe4d27469af1460f7e852031a04208ef629b
SHA25635c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc
SHA512fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e
-
/data/data/app.EasyLogger/files/.com.google.firebase.crashlytics/report-persistence/sessions/6619E464030200011388DBC3E2FBE839/report
Filesize733B
MD55ec82189ff872e8a36aa65fb3b3e0cd4
SHA17096bafd1a5cbd095facb140083a74600e527aaf
SHA2565d9b60646189809a6492640a127da42c7bf72e81e3ba220e18d8119a5ca83a2f
SHA512232a8e0cff42b3380b28a361c779fdb0bffc8a1791e21b012341ced4e44fa38affe9071d807773071b7ab9f35bf9a71943a7bdedcb9d4838101feec1215abf88
-
Filesize
90B
MD54c0ec50da702bb9bd520fed28398c812
SHA13f4d11d1e7b13748e7e9a3f3ad46c98bc4c9333c
SHA256946e468efee8fe943235545f37b183be5ae6cbad8fce39c38a46647fe6759b5c
SHA5122fd97bc7d1f143b4bf8dd33703848f5cb2956ec450a1e8416660db05106a3f2164b0ea3b158a3322a12596c8e650a1d19934d8a36f338e19572d4a5c81179f49
-
Filesize
565B
MD5651a5e94d732831c0f8c8e8111cfedbf
SHA1dc31ddd0424eb1575f30b03deef7cfe862459d49
SHA256c0d36b58901c5ed084302ba0e57b9c6fa50001ae0b781d2ce561e9efaadb273f
SHA5123caa931d04c2af657fcda4e955c6d71f7f1d8fdf2e26e19a7c5a509b45dce348d59e07fee3263275089745a13c97c997cfc0211d131117548448552821432164
-
Filesize
36B
MD527d483dd5c0c870bbfcdeef77a539312
SHA1e15a0add274c837a6023dce62e42931da4fe2cda
SHA2566bcf4a7efdf5e6cd4ac148daa002f872b0a224a17885900ab72a8c71c8b314d3
SHA51241d2dec64d43bcf8036922272be33e04d8f8622734795463312bf4655b5cc21a9bb3fcde6fdf0d8e41d1ebf0cba742e00d3b01cdb9b565aa348cf7ca50d6f3fc
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
512B
MD581102a68e6e30c336b35864faaad9f82
SHA12e6e2c60699be59ab68f9bb6a5292a13c16539a6
SHA256c9bc47410f27d482194a8459ef178a5d8f1385c6514d455e2061aa656340fa71
SHA512f518f1efa468760dd83743022593aae78f1d67ca58b9084ff5d08c54eddf70345ae5751e8d70fc60c7061d0ba874dd7f020a215b4be58c848ddb1bb9b632a8da
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
16KB
MD5c62d4b882d81f9f4d20f20b241461b95
SHA1a15e49f9b59a622f44f6f885a720661029739552
SHA2565a29c4c026bf07f8d5cae1ad06d6a5d5137d02a4a25f407b2a9c31ee1f49303e
SHA51284a7ff56225795f2442db76f1485bc6e9dc3609cdd43c8512716d0189430779863c8c715ceb67e0e4d9b25a8f101d689627b4af8cc17253b2f616f782a24c6a5
-
Filesize
108KB
MD5e3d88a4bc359fe25198a640153bbaad8
SHA1f56af44c806e1378fb12c950575696699e64ea2c
SHA2569310fd6a69fbd7492b18cd809ec46d08d1da86c76f05e09ae1fcf8100ffbe161
SHA51282c1264e8e2f0d55b4063940e3629989df279df4168838a1523f4d3463afbb2a524986ac1407339a11d319bb30d27364fa33c8d0fad94306b076cd7637be87ff