eab5bd8692881373181f8b4003541df883e9bea63d12c2f628a5985ab8ee5625

Resubmissions

15/04/2024, 16:21

240415-ttm52ada6s 7

15/04/2024, 15:36

240415-s2bxascb6z 7

Analysis

max time kernel
121s
max time network
130s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
15/04/2024, 15:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

IFTTT-4.32.0.apk
Size

19.3MB
MD5

aaf5f98b27ce47f861c63f862f0a7035
SHA1

affecb2c857069ac3f30f7db56d6c6b5dba17e58
SHA256

eab5bd8692881373181f8b4003541df883e9bea63d12c2f628a5985ab8ee5625
SHA512

dd027635991ca28d968933bfc254d9c1145d876343c25bc1da343e836bcb48f2fc8811ec06689f7d5e813627fde11a4ba4acf4c57d9e27cc267517f38e398a68
SSDEEP

393216:15FU2Fny9oI5+tVzIQLM12fu55bg0Z9UGHUBSXwRjFHRx0gHlEe5MOk:LG2FnQt4tCXgfuT/9UGHUBSARjFHLHCB

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks memory information 2 TTPs 1 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.ifttt.ifttt

Queries information about running processes on the device. 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.ifttt.ifttt

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.ifttt.ifttt

Checks the presence of a debugger
evasion

com.ifttt.ifttt
1⤵
- Checks memory information
- Queries information about running processes on the device.
- Acquires the wake lock
PID:4243

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.ifttt.ifttt/cache/ndk_crash_reports_v2/network_information

Filesize
86B

MD5
cda92bcdc40d8bd458141f3f6d80b206

SHA1
f4e8298f5c1dfd76bee30251259dc787fdd2dd6c

SHA256
feac2c88d95348715725c30338cb65f1d6694aa221822865d5982a276148737e

SHA512
6340895b500f4c2de8badd6352238608ab3307f8d364c3d0fb9cc673b89413b8bd9daca7bdb0d979f45f482998a114e6602a8b88ca5c070e530e0eae32cefeee

Download Submit
/data/data/com.ifttt.ifttt/cache/zendesk/zendesk_media_cache/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/data/com.ifttt.ifttt/cache/zendesk/zendesk_response_cache/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/data/com.ifttt.ifttt/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.ifttt.ifttt/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
c38e1b1e38058f531fee87a4ef190098

SHA1
fdaa3af3adf8bb8a2c6def192bffca65b9e000f2

SHA256
12e3f4076d384309af5e727f7fd02a2231ef833c0bbf37ac5809f03fb63ca940

SHA512
31c6caf7d552a5aec53a7510d35da0aa0d7254fde0ce75cc1f2802d35f84c0241b9bb3f0ef9b6edcf421baeb5ab104d0b1c25b7a3319995af46b4b36d160f9c0

Download Submit
/data/data/com.ifttt.ifttt/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.ifttt.ifttt/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
8d93b19704945a8b45b6bfa6b652db87

SHA1
dd0728fa232a2ee32fa56fa612a341d3de330bdd

SHA256
bbadf6e29bbeac3e05f3a62656c0c2273869a85b08548a7befb3b799acaba7be

SHA512
e546320c0373a77cc1dc2b3759757a51d0039852c6a23e16f7aee355f94738f6c1e48ea6c0ba4c2a2379b11dcaa3d14096509d25d3139e55fe19c808a8b39950

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db

Filesize
16KB

MD5
00a4d16059fe0553dc6ba6f6aab4c8c6

SHA1
d52f2f0715c725b690ebebdb983fbee891ffb78c

SHA256
62996bde8e93563abe92772d61ef28ec0b0eb89991a2004c224a52794d705e69

SHA512
fae78141b67b1082836ea8bc7bbc77150486286ec4f3a7468af9ca0bac7d2f7ea9357cd31f148ca19c8619d0249a336e88e9ef4181850bb7334d1bdaec1d5f33

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c9efa0aea369722999fb527b54c49afa

SHA1
6133b6cd9ad265cbb82289a59dc2c964b2c5c321

SHA256
e6ff5402739199cedd732534bb8e8554485531ae47c53e30bba710b08c8a1a33

SHA512
3a622f676a3e71423e3be3be09a1c0cd0baf7e5cc5add9ba0cac60fa51485ff1f40cd8b54dbde7b67f085800670df6972d72e44656dd91c34b78c1899b325e40

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
6aca544e760560038b116b86c7f6787e

SHA1
9c17e765b73e5af3458beb02be2459147fcda4bf

SHA256
b4f6a94067a593d16b71fd740fa8412f5a66e98aaf3271e857015dfa6013875a

SHA512
1039efa5908c3f7b068406627e69edcc2712ad8a124bbff1b466448b0e3e2d70de891442f347e18aab6df35bddf1af267005f7ed4d83ec489d357e371c68f1c7

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
98c88787e48b6e2356c1a242086b1836

SHA1
867b297b98a6215e8eeba556dd5036d76febc252

SHA256
2cacb901677c4dd821673878d973939b422eda1c578fb7e6f22cb84de1e30458

SHA512
02734f4c78ed44a100c8a1600fac865672c826a6734e5cda680b9ac4e7109d64c3fbe10e2c48c3139ac6f18f770e9bc6ee363db13be836659c021af2698c7232

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
cf4f829e3a4423545f09ebaf1f8737f9

SHA1
1525384ca3861c904ccbff48ef2f07e88884fbe0

SHA256
1f6edf1ae2832cf301c86c6eac90550b077828f1e25a40ce381aa1c777c62403

SHA512
a08d93680d9ac7052db1ce592badf949ff57fb5bb8d489396aa32813ebb204fe894a8796c68e9897304ffa10ef68ac7154132bb19eda1bf6cfae720839ffed5b

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
17ff83aee1cafbd235cad865ad246a0b

SHA1
6f32a2dee4f9f8f7fa0c9db8176a3e706f54ff26

SHA256
1387fb34f74bc715e3d3997defe908b0ee810f42a9197fea7fec5d1324085485

SHA512
f57f8fb86b61a200053227c2bb7142b1dd038b5122e5ffd7a06e41626352ec0c64044d812253aa0fa4842e4512a883c1940a255bb2d7e327125f0b66a20b148a

Download Submit
/data/data/com.ifttt.ifttt/files/.com.google.firebase.crashlytics.files.v2:com.ifttt.ifttt/com.crashlytics.settings.json

Filesize
711B

MD5
5d8a368cd8ac9a22ae8b1b661e450ae0

SHA1
e48f9ca7db06cace7d416d5d63d4fbe4e96d2035

SHA256
c8e6f86752cedabb0df28eca50225fc74a245ad3ea478d2b730bbdca2e39bb6c

SHA512
729e0eb827730c6ad63e2935565a9566b99c9f9f452967a794445ab16b62e56bf63e4573008f64dd39bc18cabe0db1e68172647b1e20618671da7503f2bb9e5a

Download Submit
/data/data/com.ifttt.ifttt/files/.com.google.firebase.crashlytics.files.v2:com.ifttt.ifttt/open-sessions/661D49B200C5000110933167C4C8364C/report

Filesize
740B

MD5
d8dbb2e30ad22510a144bad34a07d86d

SHA1
1984d49130825fe60c9e6add80b36678378d5a2c

SHA256
b9c8586309db8b1d37d432904bc8762bc9dffe39ff0505d96b01af2286983318

SHA512
045b3df9be456679a52508a9843eacf25b72dff2122afeeac9f5ee1df782dd37a2bf30d29076afa41dfa0bb1acd83c938ba3e15acfa55560cc2e0590a8e27f53

Download Submit
/data/data/com.ifttt.ifttt/files/.com.google.firebase.crashlytics.files.v2:com.ifttt.ifttt/open-sessions/661D49B200C5000110933167C4C8364C/userlog

Filesize
88B

MD5
3a5c411c435cb7a1dd14f99dff434a6f

SHA1
beb0925462027ced0965aa94f67f3bf005839c4a

SHA256
914ab38a2b816b05c10270d7226868582b77b1d4cc3d6ad59ecd8121f3813a11

SHA512
f5af8820382cbb0222a8c40ca97c03c085d9cb2d5adaf14a3c4cf1792970246bb12f19cea18112a3df0bd4c4ed51721437bb963f3cc7574d6d68c3ae9926df3b

Download Submit
/data/data/com.ifttt.ifttt/files/.com.google.firebase.crashlytics.files.v2:com.ifttt.ifttt/open-sessions/661D49B200C5000110933167C4C8364C/userlog.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/com.ifttt.ifttt/files/PersistedInstallation6592963882794752338tmp

Filesize
90B

MD5
72047ef0a0d33b8c3e3634fc845190b5

SHA1
9be3b611de983841c57d2b00fc6c284f4681a339

SHA256
15c624b6984f28988761e8e34fff3144245d90f5ffca5dd4f6e64f1e9190b618

SHA512
3f08283aaaad4c831c749bbe00fbdb48ed14bded6f567d0451c2df7bb44f6815d8c9cab2ec470af7ce9b5b5e07050141cf9c250e6c6f7ac02721f88dd18b0db9

Download Submit
/data/data/com.ifttt.ifttt/files/PersistedInstallation8150641387339463295tmp

Filesize
561B

MD5
e03f551653be3ffc94986c3d11437aa4

SHA1
1593c74ff74f5efcb9baab754a61c912ad11098e

SHA256
fc03d7bc2f15482a623a392899962ecb942f887a959f62e40d2a2f47d2febc8c

SHA512
f3886548584ffae929640f384e7d158227e65d31f23c1a8aae39eee1cf51e0f123904b17d8e0d4399a6779873e67706fd1d22f2c9a836c14d68dcf3615d73b67

Download Submit
/data/data/com.ifttt.ifttt/files/frc_1:250025215786:android:bf900c623c0d331e_firebase_defaults.json

Filesize
236B

MD5
be22e0ba35633fa9b10ec2b1a8a81ed2

SHA1
6e542c71a744802989845c7b1799c5276fe081b7

SHA256
93e3fa75dd550a9b266c8aa941486d5ba5349492cc55a607817d0e6a584cb854

SHA512
05363748a60eb07709dbba500c94c081628ed6182c0d91937281b102b29338bf3b29e094eb4dc6089290a9eef409d5733edab293dbfcea68db0b8ce9490ef277

Download Submit
/data/data/com.ifttt.ifttt/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
0c0e8b77e37c833d57c4923953bb1fde

SHA1
ac9a572623af9351533df4cd6e2803bc71f4efb4

SHA256
557ee5f5e1e9f2b5b903ad734b351adeb1deba4e8bc37aa172236f4599d37027

SHA512
4d842a3d5b052044199fd9bdb3474c44e8ff066b2a7de1cc34322d59d025753a985b0ab20559ead2d8a225b3bd3540ea9d6632dc579ab499db0e61e3568e6f03

Download Submit
/data/data/com.ifttt.ifttt/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
3afae22bdd6fa2115231d8807b8a7657

SHA1
e848c6a533d18d39bcde1ea0db70b6394f21178d

SHA256
5f3ecd58a95ebd48275bc5df7ec0e0b60128297dc33db92f8748199d292e542b

SHA512
15825f1eb8f59f993f4be07769b4c56af4a1da787ebd6d854ccb547c1aa9edef97c59b30e691954e2b0022a5abea09e3e98ac87096b0870ef1eed1501f5d3253

Download Submit
/data/data/com.ifttt.ifttt/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
706033f7faf33ba3f5062d0b51fe7954

SHA1
e55d956f22bdc67ecb22b1214136eb772e955078

SHA256
867b5e0895f5b4818451f9bab737d3ae3ee8fa49d3ce22ac9b4f3ea040bb4f15

SHA512
bf50322e6d4d89c0c342dbea9de59aab6f10cb03cc3655c55f5bde62aa23753e3698814f5cdca40e2a367d7d05c5e39a03557c33c161c35b1bf8ff619ac712ff

Download Submit
/data/data/com.ifttt.ifttt/no_backup/androidx.work.workdb-wal

Filesize
116KB

MD5
a335277eee1579b90edf1912d8c6aa0d

SHA1
2c04db1af246feb91396e48155697ac66375a572

SHA256
849c02da77eb0754fee71f12d4e038ca04d6441795205420ed26edffc88757fd

SHA512
bf165134a2c2694b5e6c71b9a69ec56d3f8794cd9ddc66bc3ed808b9917ac1af12ab13d4eb00c3f109b78dcb6228ff49b9c3a7447ad1b90cecfe9eba3fe3ddd1

Download Submit