eab5bd8692881373181f8b4003541df883e9bea63d12c2f628a5985ab8ee5625

Resubmissions

15/04/2024, 16:21

240415-ttm52ada6s 7

15/04/2024, 15:36

240415-s2bxascb6z 7

Analysis

max time kernel
121s
max time network
136s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
15/04/2024, 16:21

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

IFTTT-4.32.0.apk
Size

19.3MB
MD5

aaf5f98b27ce47f861c63f862f0a7035
SHA1

affecb2c857069ac3f30f7db56d6c6b5dba17e58
SHA256

eab5bd8692881373181f8b4003541df883e9bea63d12c2f628a5985ab8ee5625
SHA512

dd027635991ca28d968933bfc254d9c1145d876343c25bc1da343e836bcb48f2fc8811ec06689f7d5e813627fde11a4ba4acf4c57d9e27cc267517f38e398a68
SSDEEP

393216:15FU2Fny9oI5+tVzIQLM12fu55bg0Z9UGHUBSXwRjFHRx0gHlEe5MOk:LG2FnQt4tCXgfuT/9UGHUBSARjFHLHCB

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks memory information 2 TTPs 1 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.ifttt.ifttt

Queries information about running processes on the device. 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.ifttt.ifttt

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.ifttt.ifttt

Checks the presence of a debugger
evasion

com.ifttt.ifttt
1⤵
- Checks memory information
- Queries information about running processes on the device.
- Acquires the wake lock
PID:4259

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.ifttt.ifttt/cache/ndk_crash_reports_v2/network_information

Filesize
86B

MD5
cda92bcdc40d8bd458141f3f6d80b206

SHA1
f4e8298f5c1dfd76bee30251259dc787fdd2dd6c

SHA256
feac2c88d95348715725c30338cb65f1d6694aa221822865d5982a276148737e

SHA512
6340895b500f4c2de8badd6352238608ab3307f8d364c3d0fb9cc673b89413b8bd9daca7bdb0d979f45f482998a114e6602a8b88ca5c070e530e0eae32cefeee

Download Submit
/data/data/com.ifttt.ifttt/cache/zendesk/zendesk_media_cache/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/data/com.ifttt.ifttt/cache/zendesk/zendesk_response_cache/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/data/com.ifttt.ifttt/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.ifttt.ifttt/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
2b8c57cff114acf70aa37af4ce3a842c

SHA1
94e333324d77fc09bfbfc72f675c24dd635890ac

SHA256
015f64e25cdc48b594ae2c30c7f36b97f39b582066697c495e0651e97c237503

SHA512
826397af85e0f7b8149b518066211012961d4bcc71ebf610917fa06c3266919d5772ca50cca4dc3344eea6fdaae28009dd2344e35c77415f70fe4f295eb1eb45

Download Submit
/data/data/com.ifttt.ifttt/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.ifttt.ifttt/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
d6f2f25b40bd74dc28b6c17c940095e4

SHA1
fb36c28290eea866037642bc31288f38da985193

SHA256
ef808771c57ef5a71c233c8506fa4aa25c46be9f7df2a3a8e8e35b577723cbf5

SHA512
0ab1bc01b48724b36fffba5df0b695ff821fb462fa14bb83867cb079b5ba24b69f5d2e87b11a3e7540f5e0fa29a3bc1a4c2ce29c5eeadae8a5e049e1efa34cad

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db

Filesize
16KB

MD5
24d75771a7f09dfd48a63b88c03521cc

SHA1
09a6c615ba120620605991a2cc76db7364be8f2d

SHA256
5a438d56b8d6f1b093a64c22f41a3bacce330a5129184460b673e09b420b77b8

SHA512
5d39f8a8005ca25b8d01149bf2d63f67fcfa7dd0dac8718b7ca6d8554689610461e770103297896cf073be9bc57e07c2c7b3e53e2b29a23b57c057166c0c4d02

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db

Filesize
16KB

MD5
5ac7279034f50c53b5382a3b703903ea

SHA1
ab44b427d2ff0718ab1c8b3481fa0247d747cd43

SHA256
cd11e8e862061b9c7a9dde99ccb8e5c517df651b9ede29c7a768fa11b1864a56

SHA512
ad020b2695c154cbfc4f99cc97e62414cf78383352c8ad104c48f56a8bf4575558228d2cba3fcc085d678280c4a03c1445615651b02e09d67152849bd55af741

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
f566dad8e3b600c4b9d72da0be8a243d

SHA1
3f0618f744237e0129dbfdf0056813976f69efd4

SHA256
62a0f78a6402931f9e1cc6244fbddb68d142e38ed13623a6394f45ba1eab85fa

SHA512
77c59b3c26df69485f4c6b1d9902e862bd0f563730786c203bee9dfcc4cc74e596c23dae3391c4bde4fcb2f9323e38891d39006d4f35e6568c714907c004cde3

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
cd0e090ea7042b7395344a255eee8a64

SHA1
8fa4ae7fe74c40b636ee2f64dd3fd819a76c0484

SHA256
28c56df35429ba28a97a7d153ebbcfc0b4dbb4913b72e78e7f5177c501337e73

SHA512
7398476987cb68b489cb8badc4aff3d88f068a53812a300a8e68a4f6a5a12d4cb14a5e2dce7d2d0c0c1e69e66304e80f542f00f762b3e92f14e1a1397a35df9f

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
ecd6907209f51ef6a00e520122bd86a0

SHA1
12c5e08772f14256fac90575e2922ae50d879480

SHA256
cb79e1dc56d6bf84b1b4779d8df0658cdad62e9f17655f83718b5f3d2c6ac065

SHA512
92089fed94aa965460aee348d0597b240e7da7d721fd71b496f8f133e2138754595e3f2ce983d59e20afdacac74be7ad0ca96736f4682d9a2152fe90dddf7f67

Download Submit
/data/data/com.ifttt.ifttt/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
55dbbe69208718128b6730943facb80a

SHA1
24d79a61971be61eee87f28bd2e4a2b3c40b05d8

SHA256
cf95477de4c8d65fa7e16454f6e0116987883dfa94512118f01eed55113fcc63

SHA512
1ef57fc93e962614f264b4dcc378dbecd4526c30ccc46ac310935fe0e0a5bd92e3a18d5380fdc190614c4de62960909b04601567732b8d9fcfa50f9b2b80abf2

Download Submit
/data/data/com.ifttt.ifttt/files/.com.google.firebase.crashlytics.files.v2:com.ifttt.ifttt/com.crashlytics.settings.json

Filesize
711B

MD5
15286ac76760ca28cc38e29e83f1bbdd

SHA1
8c63ebdcb6ad66fe211f812f6753b957559ed07d

SHA256
5f39a8aa7bf72a8871b682dcb8def971734be4f241dfa5f437d21dd104a82012

SHA512
32226b92fe372303c2988604e5e7089be1c8d6a977b548116011f8d07e364f77c43f8d6571d55a274672714a90718fabb0c8a1862ade6fc419b3e594ab026851

Download Submit
/data/data/com.ifttt.ifttt/files/.com.google.firebase.crashlytics.files.v2:com.ifttt.ifttt/open-sessions/661D540E0254000110A3E5DE786EB591/report

Filesize
740B

MD5
3b0c7a9cf9a8427bdf4ecbf495731424

SHA1
694c9d33b10cb7285b248a07b20a354379869ec4

SHA256
3b5240ad1452d4cd36d1e4a1ae5083f99e322ca3b6702c5841c168b67c43290e

SHA512
5ffb2ae33b8bcc3778c76987bdf00bd326f01b75cafd50a631a6e45704eb31df6314beb2a17ba0b15c692c05c9eed15165b682154ca137c2d4695a526775b9ac

Download Submit
/data/data/com.ifttt.ifttt/files/.com.google.firebase.crashlytics.files.v2:com.ifttt.ifttt/open-sessions/661D540E0254000110A3E5DE786EB591/userlog

Filesize
88B

MD5
b5b3fdab256274d32151a6160566cbff

SHA1
5cb5e2a5663b8d4ffa39d97e1ff4e2a6a66da8d1

SHA256
846d6ef44f1d1051410da9d645d2cd045dee5f7cb7d21123abc8f6a5909cc783

SHA512
84557e65fdce7e2560ecdcbba3b983f09018226b052ee390b7466e8c2f35dceb9271ce9476ff979efd99ab590bfe0f6753cf25e8edd47c0d1242317665968160

Download Submit
/data/data/com.ifttt.ifttt/files/.com.google.firebase.crashlytics.files.v2:com.ifttt.ifttt/open-sessions/661D540E0254000110A3E5DE786EB591/userlog.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/com.ifttt.ifttt/files/PersistedInstallation1523174687465784207tmp

Filesize
90B

MD5
5f23f9d0555820c792caf7e5100c2052

SHA1
39eadfba214d7f32f89ba993971524957195cf36

SHA256
e5aeee741abeb38346772c5b171b6a755eff1630a6e7abd427f84b93fbd9b0b3

SHA512
417935ca21a2a7103eeb4fd6737dff726f0f96a55f96f1a66a494c748846bbdc4dfeb608ac6f7a69aa890bef22eee811a1519c429d70a4ce73c3bcac1009f3f0

Download Submit
/data/data/com.ifttt.ifttt/files/PersistedInstallation6115320800080703061tmp

Filesize
562B

MD5
b64a5eda9db736818be74843dd6168d4

SHA1
de46517ed1369bdd9d4f262d0982ea47b7dbd7cd

SHA256
831f71ef0a13c81175a2b675cc8bed8aaef175967cdd7199531b872c684efe6c

SHA512
66f687424a8fcb9fdcc6971f4c9bdb62151c6d9d56820e701c6a69088d5405df5008759a8fed191ea5341676bfa9369a45433e3f3774f2a74b934020e4ec03a3

Download Submit
/data/data/com.ifttt.ifttt/files/frc_1:250025215786:android:bf900c623c0d331e_firebase_defaults.json

Filesize
236B

MD5
be22e0ba35633fa9b10ec2b1a8a81ed2

SHA1
6e542c71a744802989845c7b1799c5276fe081b7

SHA256
93e3fa75dd550a9b266c8aa941486d5ba5349492cc55a607817d0e6a584cb854

SHA512
05363748a60eb07709dbba500c94c081628ed6182c0d91937281b102b29338bf3b29e094eb4dc6089290a9eef409d5733edab293dbfcea68db0b8ce9490ef277

Download Submit
/data/data/com.ifttt.ifttt/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
cd968891f2216a8ed30962983bd87895

SHA1
7b0018a0093d94b4015c57390239bac4aa3296a5

SHA256
ad47cd92126df668f81f5ba108455b5c917a748eda86d71152c7c42561184930

SHA512
8f5ac0ed14f19b584273f42073b4536cc7e10ef79f2d226c8bc628d85d4874e6d899c85549ada1abd6afe0a1d13aeeac50402a58d01de741358d052b3738842d

Download Submit
/data/data/com.ifttt.ifttt/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
32fdee5726750942701bfc46b7ef2c11

SHA1
26648c8677b17913e0e59be363d911a3dcd2f25b

SHA256
beeb9b9ff14af7d4244436ee8d9ecf150fe9131329792218b36fa06a48944d72

SHA512
ccc6febf4508367fd4f5dc8b37fc7234906dd1e133d33973577bb51a1d38e73af72c6df290b9250f41fa8d6f3539ed1844120da6121c97635edacdcadb130ffb

Download Submit
/data/data/com.ifttt.ifttt/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
9b147b9f916127b8afe5fe3ad1376f3c

SHA1
0a8aa981635d5809f28328051dbc85a228e10319

SHA256
17322b397f23d87d4cfd544727712378d671507a37bed4fa7a6d3958565aeed1

SHA512
9621782c7e972dab8477777df854d49bb1d8fa174e86950dd2403420d633d652251e3cbc6b177f7e72d9a8b151951f055e8a18c23d26bc3a1807b23f4c2c0adb

Download Submit
/data/data/com.ifttt.ifttt/no_backup/androidx.work.workdb-wal

Filesize
116KB

MD5
a9f0261b879f3db0c42612e43b246d15

SHA1
f788c6b5b656f7820a618dd9bea4d1d8ed4cd6a6

SHA256
f5585eb5a09eb1f4051de252c2c2649712cfb2f59ea6c5e91538960eeb58ee56

SHA512
ba51ae400595686369f086fe75b4ce4387ac667b093534aedb8821ba554f9bd5ad9a935439f5347b5ff5ed82400ff78335d33651e92569055bfc33cc65d92da0

Download Submit