Malware Analysis Report

2024-09-09 16:14

Sample ID 240515-xcfamseb4w
Target 4783db571208265a90aa6ec32f8730be_JaffaCakes118
SHA256 5daeed6df9a7bfdf4ccdff808452312d6d7547d44b1a9585e13d76e3c465d984
Tags
collection discovery evasion execution impact persistence irata
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK Matrix

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

5daeed6df9a7bfdf4ccdff808452312d6d7547d44b1a9585e13d76e3c465d984

Threat Level: Known bad

The file 4783db571208265a90aa6ec32f8730be_JaffaCakes118 was found to be: Known bad.

Malicious Activity Summary

collection discovery evasion execution impact persistence irata

Irata family

Irata payload

Requests cell location

Queries information about the current nearby Wi-Fi networks

Registers a broadcast receiver at runtime (usually for listening for system events)

Queries information about running processes on the device

Loads dropped Dex/Jar

Checks memory information

Requests dangerous framework permissions

Schedules tasks to execute at a specified time

Reads information about phone network operator.

Acquires the wake lock

Queries the unique device ID (IMEI, MEID, IMSI)

Checks if the internet connection is available

Uses Crypto APIs (Might try to encrypt user data)

MITRE ATT&CK Matrix

N/A

Analysis: static1

Detonation Overview

Reported

2024-05-15 18:42

Signatures

Irata family

irata

Irata payload

Description Indicator Process Target
N/A N/A N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE N/A N/A
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE N/A N/A

Analysis: behavioral2

Detonation Overview

Submitted

2024-05-15 18:42

Reported

2024-05-15 18:45

Platform

android-x64-20240514-en

Max time kernel

63s

Max time network

170s

Command Line

ir.teliyam.ashpazibamaikrofer

Signatures

Requests cell location

collection discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A

Checks memory information

evasion discovery
Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/ir.teliyam.ashpazibamaikrofer/cache/1582435991586.jar N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about the current nearby Wi-Fi networks

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Checks if the internet connection is available

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries the unique device ID (IMEI, MEID, IMSI)

discovery

Reads information about phone network operator.

discovery

Schedules tasks to execute at a specified time

execution persistence
Description Indicator Process Target
Framework service call android.app.job.IJobScheduler.schedule N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

ir.teliyam.ashpazibamaikrofer

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.238:443 android.apis.google.com tcp
GB 172.217.169.14:443 tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.179.232:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 sdk.cheshmak.me udp
GB 172.217.16.238:443 android.apis.google.com tcp
US 1.1.1.1:53 admob.mehranarzani.ir udp
BE 66.102.1.188:5228 tcp
US 1.1.1.1:53 www.google.com udp
US 1.1.1.1:53 www.google.com udp
US 1.1.1.1:53 ip.pushe.co udp
US 162.243.147.245:80 ip.pushe.co tcp
GB 142.250.180.4:443 www.google.com tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
GB 142.250.187.238:443 tcp
GB 142.250.200.2:443 tcp
GB 172.217.16.228:443 tcp
GB 172.217.16.228:443 tcp
GB 142.250.180.4:443 www.google.com tcp

Files

/data/data/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 5f4ec584e0bc0b45d88482d5b8a5a5de
SHA1 ecc819ef1249d3ed688a06a00c9fc3bc087937ed
SHA256 a2a76e290280d8cdb7a197a214e422369a3a982c5e7137c6b9fe868f1c345506
SHA512 f68eb892df9a6ce39ecad0c5f2ece8db271b8371a4a8733105bd1afdff461008e39bc1c4f17e3a97ef7a9553a49d6b971df4856adf22eae9671988c83308c83b

/data/data/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager

MD5 4adb7a83903a01e4bc957df50590782b
SHA1 4e35b4e34baf2a9c7a7509acbf46802ce1c052b5
SHA256 52109b2a4b4395f5c201a57f25f043d95e4fab7ec7708f0e197a7a97ddbe2039
SHA512 3c5849e5471821de9940154a045cde13b0373b93fd0f0d682d64c7e538552cadf48e5d15da5ae2ff1a8fe87f7e55d758a4a4bcbcb4d06bd34e8862be619bca32

/data/data/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 64b4e253e976c98a5ff73b91100c3417
SHA1 ee13b44a37ad332fcaa8ae28ec1f7e3c31c545d6
SHA256 79d09fa7f99531b2b14465ec87f8a39571452446b98e1cba6808c7220d290a1f
SHA512 45f0257d50621dec62a1b8aa11e1b81ec9276129757802bca4f6fd341644bd691a466b607160bf6df573ce084ef1128b5b9bd40add4494cad6f511496b37ec30

/data/data/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 4a66e93767b6d99d7ca7f55525c4e85a
SHA1 41f2a15f3d3a848e597e36a059b650b4ee6d757f
SHA256 3ad55925faa57f1887eae9743336da322867c24bc9c6065e3c8506baa7cb1714
SHA512 1631e3775e0843fab1d7f800e340e5863808cff42c76b17885670fe90b386347471f7495368cb54b5f53f9e785b0aa2a1a434bf6ea17abe2e953ccd4bb8cde82

/data/data/ir.teliyam.ashpazibamaikrofer/no_backup/com.google.InstanceId.properties

MD5 4ae542aedb5677b70afecef76a95ad04
SHA1 7e9f6680cc73676b0233e7c869955aa69ef7524a
SHA256 778a218d355cb1d0fbeceaa8a58e795dc8b6ce5779bb83904197ae1c8579b149
SHA512 eb17b6035940064cca82eca881282341c7fb8f03225c0b329d3fa0634fc04862a3200b4f65ececa7041d8015fc4923a21792b90b1402233a9ae95cea4694e6cb

/data/data/ir.teliyam.ashpazibamaikrofer/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/9079402b-234c-4fdb-b95d-46062e4c78f1.jobs

MD5 f56f328eea1d5c96a1b96dbbf59488df
SHA1 440c784cacff61932e2f61580b7cfdc3a4943c95
SHA256 90949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918
SHA512 36e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb

/data/data/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 c7044e19c2cd37b61004cbd8a010edcb
SHA1 99f0f56b3588a43fc42f381fb2bc579ce409ac2a
SHA256 3cfa3f68dd3f588a2f3b33b8c549f4ac753f05466e14481f9c275bf6e79e5abb
SHA512 bea42ef803af6ba31b4e99c4230ab9f34422dc9edc0a206bce5300bd25340c8e02203540c612c33518cb87372f87e88a3eca6e8f6504ffee98742d9b1281bb4e

/data/data/ir.teliyam.ashpazibamaikrofer/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/a0775999-c41b-4e43-88e4-dc85a323de69.jobs

MD5 ac58f99a1b179d71e8621412ad31c6a1
SHA1 b51fdad95876f5615735c2ab411031ff67d5e946
SHA256 9537553772c29c4303e606e458fd9598c14f1eee3cadfb446e241638bee3ccdb
SHA512 faf45d5eb4b890216e6ad33825ffc02cbc57914628e625164f9cbdacd5962ce8ca8f473ded2f56eb4d4006fc7cafa9cff8c9f76655f17f83f38d3e89b8d7e67b

/data/data/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 ba34b476f4df158d63f5a6d928e330f5
SHA1 1692fb69e7d3fc96efede55c38e4d6fbd5340a23
SHA256 3a92f530151183244cfc9a0e96b4f394e02de1c6360d690184f3efacce76b0ea
SHA512 924a2fba10f93ca4462c4eb76673212c2d12ded7442a9ce57d75ddb37fec8157e58b86201da6edece983c6f9135ddec8e1983c1225bb96cbe9a48bb95b17e209

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 69b7cc6b2c637bc5b9b258ca11d0935d
SHA1 7c3e5b94db906efdf5769c04113030368319cc98
SHA256 e4db6aac7e5f7d3a83cccd21d243135b9ea68a0764874456ef428d24463fabf9
SHA512 15668507ca258f771ce3c99089ed3079b1e4844064898fcf1c057c07f3c388d4446a7b3016eb777e4a3470b60029987a2dee6e3b5adfa7810c8877f513349fed

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb

MD5 259a1e4e7ebc4b0d0341ffcf0c3bc2ea
SHA1 9b8da5a0b24833a3e84567d9d8ee0d2f54d7b48c
SHA256 4f4987ac3d84abad3490459fa7a32b7bfadaae5f329e15dcff36e07d34faaeb1
SHA512 dc1296e2b0b18dd83a3782acb700e155ea9a60ef193bfa8c98999e7cc3c5b73a97c20a974cc956ab438aeeba812ec2d2f401fb2e714bb9bb5fb421fa4b7a2313

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 0ee2f00e5fb70c77c45edc97972c4b16
SHA1 845d1fec0004d95f609112fd79d888e398a3429d
SHA256 6e8e43d81d23c467ac8d8b0cd390ac4ee6a1306beda5504537f782f4596d70fd
SHA512 9942895e171ddad9da6b1de147f6dc754b6fdc2db65038a78bc6658bf2202aca8e67d038746ebc02e01e8b08b6d53c27d4a52ed6e031bca18863701e64491404

/data/data/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 64b72b94a0fe6536b719867cc5cf6ece
SHA1 69231f98da58abbea2320725a631f30c711002f0
SHA256 7a174611755b7461ee37330aafa48ef0fefaefb125e0630e3c9cf93d870cd777
SHA512 493b90ec0676333af3f0b256fdddfbd4ea3180d1026fad77de479c8709e0aaabc64f7783dd1bb2b1669e83dd59bf5c731f70d4f36c4be85aa9ceff640d45aff3

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 77819445a001b1fdccb89a1dd6720ddf
SHA1 7bf540cbe23a2b3bbbb228c651b26b86559c2585
SHA256 72cedfad5430d5293bb55b3c101087c214bc3c7140939a57f360540ba4bb3b81
SHA512 9128f385bd1295f273a29eccfdfae750599327d54214fb3d2f9d667ba1f1df0218945f41947a43abd63f7afd4225c6c011c4f279355af4635687452972fced72

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 764e3362c88ea7370f8617b37deca70d
SHA1 ef3e618a410b213db5771f83b9099a46a08530e3
SHA256 b51228dbf36ce0cdd0733aae428bfccd9487c4f291d2ce9aea9a9feea0a78e6d
SHA512 d456ee0c222fe75c214c4b87dd1000b9fd895139c45416f1912eb16a66f89e18031e579aed02d737585f4d550edb9cf4183fb381cd912ce940a07ad6522b70eb

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 8d88236eeb7924f573f3ccee12607597
SHA1 0efd7fab19457eda28bbe039bd441090ade66ecf
SHA256 ba14a6866194035fb4c646b3d04129013909654209be815c78ac7ef1a7b1837f
SHA512 d75a61c145666f675167ca53485a0d0652a89aed9c00b39288d9ae42e0bf0be85d2c7758c4649ad59475bd5564b49eaa5c0b9d508f817ee7e08935091f014098

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 9dabd95261d9432d2609173f6a7fef9a
SHA1 cc5a5fd199295b0db23c14cef454d53294e3b537
SHA256 2bba9b7236f0ab357dd4f001022519ae3c6ba377bc1a8ae7d4704d9bed4383ac
SHA512 5d64e8d6fb9537bc865be0a543bd4b5d51f3c7e4533ada0603b16aec858118263b928070125f2a8f700bd0206950fdb11228d307bcd9c51bd2c6c9620169e8ca

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb

MD5 1242a7c898f42df766c9b59a79cf74af
SHA1 3b9ca3014409ba8f3ea8a05d05fdff8bcbc99d82
SHA256 9ebab7f6f79d14f0dc631993309f684a67e1509c851e1cc746967c33fad6a5f2
SHA512 3e7e1021d0418683d5456ab52be5a843274438534fe9863bb7fc175cc1a18955521f526081b726ecb2fc4fdc8e8828cce1538dca26c8a4f9eda6079304a8bc1d

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 eb52a90bb70b76e946b62f50b6f7fb85
SHA1 42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0
SHA256 48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4
SHA512 b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 c649dfab5f76ebf693d17778a9e06e06
SHA1 a27d46717b8c5a425efdd66f295f0bc6bbfff389
SHA256 a5edbed0c1dc6c05211c38b266c7fb998b44942c63244a23ee51ed8aeb82c95b
SHA512 2325efa221e68ddb755762aec2ea4b180a62b439d8e0d146a7c19d9e90517106e26c8fb142b61bb6e0253f6570b61ee8ac7d29ba91f692c1eacf6c5f756a8fea

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 33fbf1158a641784d406d686d1447370
SHA1 9fc17b385e9bd1b67783021a37e752a181f63841
SHA256 1b40de10090e7e885c706542ad081e596586af597e7bfa7e744260a2786181ba
SHA512 b3d39d353f138fe51bfd631947c6c82bc9393de87debab2deda1fcf2e81770269711f79cddd88965d1cc176a6fcaa83a6ca3e3dcb18f175479c0e287817af098

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 42cb80b0371b4e1fd81b88c32865dba3
SHA1 9b27afc913a98724cd4d3592ed92b2752faa8846
SHA256 4fda8d8d1480b0a59855def5bb3c68b754bb7a355f56d367543fd2f113eee9e3
SHA512 9d797e761c813bdc20cef88f8298da2281b24ce6db14abff949fc60670c345d1d6081cc6350fd62d9fd5409968dbeadbd003ff39a53a27a80eb3d9db6413587f

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 8e1d1977087f5d71752670f4d7e893c7
SHA1 b97352dd2154ce31a6c23d6c7ca82e2cc082434b
SHA256 81e6dbe43535ceac05cea6d2f71dfb77090191933b2a0bd11573a033bbf9af4d
SHA512 e997243cb403dd763d1bdc13c74e49d52005c91633da56a612e948b9005e8e601b1ec835003dd7300b39f37384cb0b178e39e31af3434af393cd192f55248cd3

/data/data/ir.teliyam.ashpazibamaikrofer/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/cb562167-57d7-40a0-85f8-bc0c8ffdc7f0.jobs

MD5 ab0bd0c755f4bdd14b5a6fb04731f7c9
SHA1 cfe92619be10a8e6babfd9377adf139618541fc8
SHA256 99112f51cf3ba569446b59cee140df46bc96b2ad73913b7ca90e3fac9e13d777
SHA512 79a330f9dfce90f2dead27265b1bdba7c07aafcb0035bab8dcb644abf0aedae78616278f702ed38fce485ce3ad6b1fb0f5b1d7ae23fdcef1108daf725d42bb64

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 951fb1b6f3e599620365d241a7d16f66
SHA1 9b4fca95173bdb3d5f35f04fb39fc1dd0d2fb6e9
SHA256 b6cdd2d7fcfbba6182455b762ede747ed4f383b0a644786efe187bdd00da31b7
SHA512 a9531ba34101ec893c577014a40479b585ab2642ba51054184cf84961639b8f715f3c4c7618fba1616801a2046675f0b5df664b559c006968562060746afc304

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 6758bdaf3bbd16a1c897a86eb70e7734
SHA1 5156d00146dcd33fe1ab7c665fd5d49015bcd4cf
SHA256 4325e5bd7f13c87088eb34a2874ba629afdfabd5314c2a49e43460d8a27b6e9d
SHA512 3b97a1c5751c050ac47c4a6ab2349a3896fd254d59e5a9a1f583267415a83355a1faf5e3d18552154bd79814110a567c24dca7c5957f947c4d52cb32428b88ef

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 dcb9fbedc65c39c0173d82f46c8f42ed
SHA1 ec483025e301c718ddd678212cc160bc3aa2f5dd
SHA256 db0689b0234a266c03c7fffbfe43553d872e4d1ccbd25fe68e76cd9f26d4e6d3
SHA512 6176832d16529089f834d5276819918cc73ef1f4d6d08d5fecc6d4d40c22e651b5e79f6663fb917027e5d8b4c64555c3e69c99a9e28e3db3a78a09ba6a83466b

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 ae4be203e96022cc908360b6e083a94e
SHA1 bb3c77b9b5d2e7063c7a202a559bb4834d3d7025
SHA256 8b0f295c808336b8d8382a01b5fe5861f07b0cc8e3339cc98aa8bdf57762a738
SHA512 30795b56fc92da55211394ff67af40eabd7b89c9220e6fc68bb6dd4834621f7fb8d81428e4bd246c39b9677c899f698fd60487f268f65f7f4383eebbe0afdab7

/data/data/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 3e45c8a86344bcaa2ac87dec4e36ebd3
SHA1 1926607bad89911bd417c3bb5d39e7f99fd57708
SHA256 382128850b4453ae601f94a086c7f02e5db16290598b00be6f115b0ff7a69c6f
SHA512 b46bd3033932c1e901ba367071148cd9a4854ab11404dafcc7959de4fb7256b89533c499d5781fe203c30db3fc3c411bc7c4b9f5b6231129383e2b9b3368c481

/data/data/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db

MD5 2d195dc45b988afabcc8588e4427c126
SHA1 74e2fbc620df0ee1129c05dd618e6bd049d4301b
SHA256 c7b0ef8fd761d045b89dac306bc22d8ac58ccc0473560011969d771681c5bb20
SHA512 f1847e205a02d19bd0ef22034619d71ad7e95241fff44606a7be8063777a9d2ed33678b134ef0cd23d37889bbd7404f00a18f4d21c355848fe00638ef685529f

/data/data/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 5f25ddf343bd9cba40bd8025e73848a2
SHA1 d8115770081c6e020b0de323b6740f6f80ee17d2
SHA256 1e499416730b53735ca44ed5440a3823e962aa2d2fcc487a5096f421643ff03f
SHA512 efb70a6a61e79c97a4e2aada42288235c4c5b03f3c5815b301c10d265c6739e84d82368ae961096bc2e77e028073632c41522f120d4f2c927967f6f0eda38eb9

/data/data/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 9c93b302d00d57be71d8028ef305f921
SHA1 ec3e87b137f4423a38e549ba1639e4aa600233c5
SHA256 0fbe8540f061782907ca22361a3c4ac4ddad02432c874713ef1ab865e59e4ef9
SHA512 caf7243ac7cf89f084a08a63c6f5b1894d448103866fe1d7fd0e4630b854c2827dd8a4ead31504848f1aa9159d5ad5d7efc3a56dff6d0a8fbe4fffa3bc31664d

/data/data/ir.teliyam.ashpazibamaikrofer/files/info.db

MD5 da39c3763f631c3547d65821f0753431
SHA1 7b60236952d6fe8bf05b84132f9023ebfa38a228
SHA256 90fc33a474e9ccb907024700ae1824c2329e0e3da2fff8abd9811b029891f02b
SHA512 f56783874d42ce3359e1533a3e5be27ada12ffab0172ea6234a453b2c68908137b4a6de6d0df36202f28e71735bdabafa35803d7b94f1170b81dccefba71088f

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 1819e97f82cd665320ccdb2224f6cfc7
SHA1 c5d0040948a23ba70dfa0b0adef375ddab02f8fc
SHA256 9c526064a3d764f1f14c024c984e615a89af453c0fb2bb56fdc6f2f7abbf6d81
SHA512 fe871b66d5195928decf599b561ab209a4a5b36c3ab4e8c4f6d0d6101fc5590681b88002e70d42c4a578f0728053e297eb0deab8cc4c83b54c522b224d0d011e

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 d2845eee747d763d7fcd0542c31e4578
SHA1 e3c77884173f1d760fc4af130a3572094aefea10
SHA256 acb3d51741d0541bede39514a7eb7329b793164de404bd840abc165ce01a1314
SHA512 8e116650ded8ca5087671390b11811512c72b1d235fd8228d7e6952dacaf4df79380e6f0be1b5568ac831696956a615f6ee0247d138c271ed042e91cf6b6e218

/data/data/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 eeb80d1b9729860408b3a187d97240b1
SHA1 079d5bde934a91e5b22ca094ebefa9ad4d1436cb
SHA256 07d03e93fd1fce6d1fc0bfe9c7b1edd0da7909418773b4364f7f9bf10043b1cc
SHA512 ce70138641362cb056530f46760f7f60cb726090367a003fb72d575bd8241d289cbc4a57168fec5b5da317fa1a81c088f2c71fcab8cac1f87e7059997d093dcf

/data/data/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 c9cf864f86598c623aad00f0510a8273
SHA1 ed2b47411c38f421420ef5848de20f0062ab2e6b
SHA256 09125dd3aadeaa087e614f5e1c7d1f539489fa883d5761727eb14913c9d88dd3
SHA512 3393eac7e9e089555a83fa9d1c104da5d350f5c9f4319b180c134685e66213975fa622d980044da9f96abb39341fd8f22cda6d863f7559c6d4ffd657fa7e3ab1

/data/data/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db

MD5 a3d9a80979f8f3f330717d3ea79f2a18
SHA1 c15210b4618efde406a05853b5e8ac49d3f8a964
SHA256 10aebe189baa7d5bce1656fcff47b8602a0d7083ff8741b4e61b0ae2602471e1
SHA512 224ca66bf4be75d4647d369607fd1265ff03cb2513e7246c82ab643d1db6dc448e92172f2f394921abae1c73cf9489b937035639091f8973ee8c195f925071d5

/data/data/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 4e4e2589dc1317a3bbaee70b84ebffa8
SHA1 266ecadac0e57eb91509b1c0b18789f060fddb39
SHA256 7d7fa47e1c75fbc70cfec1c949a2a0fcf3f43f7217fa7e9d7a7ae9dae8b5afaf
SHA512 b61e17b1e58f79acfffb71b4c69eb6e548586d2b59e1c832e3517365490ee1bf739e91ed49cf150621d98714f9a8b093b5c448570ab6a93a31189a0913f0fabe

/data/data/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 fda95cf3d21b7d9848f03b20c3fa8b29
SHA1 c8bba27a0fe2ee568bfe0d19c5707b35261e9ce5
SHA256 7ed77239feb38ec4e9a4a0e4ca3f00fcd5df06fc914d7b45b9c6d8040cc50b82
SHA512 cd1415d263b35fed66c85865a001f3fc753218d606f8317f7d71382b4fef4c288a02ebee61b3974976fe06455a944f4187488f286fbc7cbd20219d12f8fb93f6

/data/data/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 5c09ad66406b7059f40def70f0db9f70
SHA1 6c29cb5795254fdd281331afbd84fdf3fb01cf35
SHA256 0d4585632e39bf951bb9d2ddb08748f5a285ca76a48c3e168066189e29aeaa1e
SHA512 836bb045654eb26bb74eea6ae8f4db904a7463a32b2494ec8cc879c87a9c0a59ff4a507f905cbe6b7bd8f19598e7c1fa0453c6ac396f27e65735917a106e2b8d

/data/data/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 d06552afaf5f9b60d2e8bce35e0c11f0
SHA1 4714b703ae6c0f4c857904b4a16d365d30e00b4d
SHA256 f4914a65d57f2648bc6c8bff00501d6c6bc947610b34333585e049203f8e56c4
SHA512 a60efc8ae33e5ba924c0733d969f6031656480aca7618a654c5e8b7b4b5fc179acd8ba9a0122441ad07eece34c2cae9cbec2e7113a52badab03d6c958c4a367e

/data/data/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 b8fac0057f6b375d951c8b49a907df9b
SHA1 aa3a275f9052652fb4e4eaae01ff87b000b751b5
SHA256 c13f43699167f6ababbda02d27e3dc09adf560cdb7c01f11c86509ef88414565
SHA512 90785a339d9280aab594847a2384b764b7a163a49cae9b79bd62d4bd0635d0661fbff971b67d786db66bcde703382544d0fab2e65cfbc70e6a82ab0c67530ae3

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 5b46d91ec61665a2e762703bba4bcfae
SHA1 6a14cd370ac4e00238d875e45d97bb9e02bb35d6
SHA256 6fec4f773d884ea8e1a8b97d5b925b395e53780f6eb19a4af73f24e760370ab6
SHA512 9e8bfb49af6feb5806aea366284bfb4c806cefdcd896606cb8cfc7d42f94bbda19b30a3ab62ef268e3f5beb7c2f40aa28123f22092adc7197f951f9ed612ef68

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb

MD5 9a2ac3d766ed448e2fb12a4bfb5373c0
SHA1 b6e581947e2fb5b1cb3fc37c9b80ecaafb17f5e4
SHA256 cd7fae43f6741406b58d173be399d5b2021307fd7b02f7293a5740b7964a2975
SHA512 a042267a09c9e527534c856ea9d698d00ea6a05e383ac2fb95ea8f2bbfcb1a14de5a0b716c50d12666faad46a53437b1618cf7975da4c724b3e3fcb1fc6ec99d

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb

MD5 0cf1940fcdc73ea0b75a5f30512fc2e9
SHA1 e01fe90d89001ae81c01bbbcdf3306d12f1092dd
SHA256 acb0eebafd7bc30217fe6ba704d4746fb7c730cf933f08366ccbb9f641e4eb1d
SHA512 0beb349b098d7b2e31f397a00ba24cfb68bdb5b54be7be90aa276754ec95508abc1b5c393c1d367a7055c14048e9c5bb9ec90e0657d703fceb1d17ef9546c180

/data/data/ir.teliyam.ashpazibamaikrofer/cache/1582435991586.jar

MD5 e8e0527a01aefdb89afd2c508f131da1
SHA1 f1103e6b260c657ceb3d95f1b023af3fda8b133a
SHA256 f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce
SHA512 fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34

/data/user/0/ir.teliyam.ashpazibamaikrofer/cache/1582435991586.jar

MD5 fde2ee00cbd121cfab5290b078aa3ceb
SHA1 e2b77d5320e155e413d040a8c20020962065b2f8
SHA256 2897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685
SHA512 a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56

/data/data/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 4e9daa2a08965c56c94cfcaee6881f78
SHA1 7babbab8efc878dfdc0a24e3cb16b989f39e6908
SHA256 3592b8d691aff0416d3536e8b5ee254bca8b3049675a6d409e3d81f3f55398a6
SHA512 b201af82764a5d80f76e6748fd48d81e6a4a0301e5b9e8d396b5f4258ce44418dea8862d145528fa43a016691240dd1e3c09dbe4d1cfa3296c54146e6566590e

/data/data/ir.teliyam.ashpazibamaikrofer/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

/data/data/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 6f5f747bc817fee322e036c9984aef53
SHA1 dbec01b782054f215dd756dd627eafb699980a04
SHA256 a51ab51d1abbcc345a1ba67a8d90187b37c61565fb6e423298cefe45232d2095
SHA512 be0593ba9800bbbbb4767f922229a4cb8fea253a2852dd97ecaf636d5074989ff6db0d7b675cf054b4fc7aba42d7b83416e84a53856f5e4f3f73b6ad8cf33b77

Analysis: behavioral3

Detonation Overview

Submitted

2024-05-15 18:42

Reported

2024-05-15 18:45

Platform

android-x64-arm64-20240514-en

Max time kernel

87s

Max time network

133s

Command Line

ir.teliyam.ashpazibamaikrofer

Signatures

Requests cell location

collection discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A

Checks memory information

evasion discovery
Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/ir.teliyam.ashpazibamaikrofer/cache/1582435991586.jar N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about the current nearby Wi-Fi networks

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Checks if the internet connection is available

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Reads information about phone network operator.

discovery

Schedules tasks to execute at a specified time

execution persistence
Description Indicator Process Target
Framework service call android.app.job.IJobScheduler.schedule N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

ir.teliyam.ashpazibamaikrofer

Network

Country Destination Domain Proto
GB 142.250.180.14:443 tcp
GB 142.250.180.14:443 tcp
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.180.8:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 sdk.cheshmak.me udp
US 1.1.1.1:53 admob.mehranarzani.ir udp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.238:443 android.apis.google.com tcp
BE 142.250.110.188:5228 tcp
US 1.1.1.1:53 www.google.com udp
GB 216.58.204.68:443 www.google.com tcp
US 1.1.1.1:53 ip.pushe.co udp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
GB 216.58.201.100:443 tcp
GB 216.58.201.100:443 tcp

Files

/data/user/0/ir.teliyam.ashpazibamaikrofer/no_backup/com.google.InstanceId.properties

MD5 33baf97316da24e5edf9c6b5d053b94c
SHA1 59af0675a20fdef888b908673a9852482793703d
SHA256 fee64b0edc8650d134a224d2d46fcaa3b923dce21be1bddff7545e7abb00249b
SHA512 bc075294aa24d1dca824bcb1d0623e311e6e0917f298d59530d9e8681364a7b8a218f5d6d14ddcc89dcbfdd18fc3ed82d0bad22a0fc7c0cd41e86be171f86314

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 3ded0288b45aeb3ea441493375da489e
SHA1 a5024be9c0a247ec425f7891018a406da53d54c8
SHA256 8a2e0f462a785d3ecde2b338d31ff886e4b58eee9d2a122ddf4d8c1029c347db
SHA512 23a86ce4f7203a044ff4153710829aa749aa3c5f53e9d16fed34d6e97e6da4a10c680e475d127b6de3f06aa4e5764d5cefbc043510e87ca7d087538903af353f

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager

MD5 e9afb9aac6c562b03ab2b18a075952e0
SHA1 01c699d604beed549956ae47df988aa407a6995d
SHA256 223df6cea2693f240b0ff5fb833ac60d1a0e60e53a2018d907e04dc4eac9e223
SHA512 0b96b18516b63816044724efcae55ce5e115944a3f8889327f0c9471155d88174bad3b449939e454d48189252f465e09730234075f94ad907f7f61b8ecdd8b2a

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 da1e91f7765de4230774639d258ac721
SHA1 abc23854396136348c34f9896fbf9b4e578ebdb6
SHA256 615e4ed03439c7344f60512e2f37134ed18b47f81cdd370e96fde10c21b291d5
SHA512 ca5f36b1d119efa46a831f3e3579acdcb3ff206b5f822d0de84df305b09d88899d0850f600465a6b66715cefbe04ac5fa027bc949bb9ede7775f3b198025cacc

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 acaf3ed00ee026af0008b87003102063
SHA1 0255d68095ff4c7c203b1acfa66a72f997b935a2
SHA256 411b702b1eae92edcbe8cb0dc5874f683f2df97da240ac41739b08cd24b5c4c0
SHA512 55de070ecd5811b1d845c92197d4792b07bc9c85e64c5ca04ae8d807b71742d1e224928df57e1c8413802d6ef1bfd373c0c5ba1e4546fae7f8f5ec010f9ad375

/data/user/0/ir.teliyam.ashpazibamaikrofer/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/4c7d0f70-91ec-481c-ae3b-798cb4f7ddd1.jobs

MD5 f56f328eea1d5c96a1b96dbbf59488df
SHA1 440c784cacff61932e2f61580b7cfdc3a4943c95
SHA256 90949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918
SHA512 36e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 12466dc52dc875c78879f70474f9469f
SHA1 dc18ba72d09a4e2ded36fbc607778eff4c81199a
SHA256 b1fa7275a2ce2532844846632025148a7398fee355e0a54554d49f3e142c38fd
SHA512 0b2cbc7e0809a5c67350a4d645b4f55762d11941d380bb978d17c3791dcc089b1e6f97ed78b3b1a2be8542f5c7ea07dc29e597764063877d5cab3dffaeb473fe

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 649217dfc8dff48c8ce5f496f8ddc9ca
SHA1 5ea64e286915c6951daa5078a568925a4b409046
SHA256 cdb0790cfffccc894f030a5147ad985641dc1aa52454e12e00cb61e510340ac0
SHA512 2e20cfd67b7d1e24a2d5ace0876011a8685f461cb9b39d256892699b7ecfdd64f773d3672f06b71daa8ef44d5b8fb698ddbe2b8b4d771d4fff2fadab29f78df5

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 d9cf75fdd1c2292d986f6c3d5d60f2c8
SHA1 07ecb1d3a26d952ae5fecf54f36699ab498510b1
SHA256 2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a
SHA512 442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

/data/user/0/ir.teliyam.ashpazibamaikrofer/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/1cebf695-c86a-42ba-ab34-35145d24f75d.jobs

MD5 ac58f99a1b179d71e8621412ad31c6a1
SHA1 b51fdad95876f5615735c2ab411031ff67d5e946
SHA256 9537553772c29c4303e606e458fd9598c14f1eee3cadfb446e241638bee3ccdb
SHA512 faf45d5eb4b890216e6ad33825ffc02cbc57914628e625164f9cbdacd5962ce8ca8f473ded2f56eb4d4006fc7cafa9cff8c9f76655f17f83f38d3e89b8d7e67b

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 7f71faf40dba0a45f77d341cd070b756
SHA1 2163e821038bba9684130ea48febd49284dda7a2
SHA256 b45c81c2ac6c5e01586130af5c4d02896c2e064df885b89c21b0e54b96207333
SHA512 ad2a1acb1cfbcf90f9c206419e8bf08f00569adc925e44ab9a44ce63f9ed504656f6a56c2bed8bafcb0dc22c919d4c1b89b2cc5e02391d475811ad6fdeb26fbf

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 ff8a7bed076705be69b534314785c357
SHA1 31d3e61d895c1b778582058b01314358c5b34292
SHA256 f30ba5411d5a7d185750610f3369746883574a729da450df08001bc4988f1fe2
SHA512 7d0a060576d3b8e7160a75564a95f402a4ab622098f6bea302efcae771569d56b89153fde60f6a8aab1750878b359d0332596b3f7953ae0a4dc30c0a1dfc8521

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 c870e4635598bbe7d9931111a3954776
SHA1 13ae5c1c622416b5265d1f365e7980a33ee702d9
SHA256 57dc736a8239c1d81df3b81f2d1fca4c9b54b34cb75d98f9067f348022f81e75
SHA512 cb616e26f5d01994624f922e2a006457b4b7ad605ec530590112b7db091276bc3863fc46c09dd4b0e07ee7c8cc7361952b53248931fad86e8d8f4e75c7598864

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 1d8416fb326b7e2acc34d07a449a9c79
SHA1 598b45908c90a3decda2ae6a554beb2f4d5207d9
SHA256 0f7653598f29d1edc5bfc0924092932c70973c38b5428f9a4dd720cfc13e3bd8
SHA512 ced83b797a11f16ec07c9dd738a4810559d0bd0c1797431cb346b56153fd22059b1d8f7d0eef80071030fbc7fb8b941d50730ea2240d97c9d424f76fa3db4bea

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/cheshdb

MD5 0660d3ef5f0245096a9fa0f61d6a8666
SHA1 282222362a5a05e3153b7f6b49ef35c667b19542
SHA256 1091580378b83e0ab3222d05659ab9aef1d2c65d766d5e04735b628d7a760ba2
SHA512 18bbe88051278314b76611bd68156ce60a9c3af3818d39991fa58d28bd9bcb8476eb00ef52ad8ae7d16c1d7ffcd9f2e8a858e2fd806ae59b5d85a8c3a9ca12a7

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 371b947e61b383790f00b517f76c3d1a
SHA1 d07dbf40436488077c13b0639e7533ad38e61a33
SHA256 2e71f92264299ff6429e7908d4dd8895ef3f009e0091c33ef916d2c13015f406
SHA512 2d02dc56a9a0cf041d032cc4d7d10f231b477d6a90c4956b899da0904d28c3f8daab3ffae21d572e710594309a9ae9a118975179251c1e356b746ef826479c0e

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 730863f5d69c7f6d1c1b7066bebee64b
SHA1 f1ae799d7088992099d8048ed0faebe25b7cb8ed
SHA256 c97ad99fea3e0057a4d707e902aa992761a8599e2b9a2f4941c8a09f2c5e7137
SHA512 08117f3efcffa8833b88ec33f750508175af1ebb0eaafae43c2447677a05b864af5b021a31e703999ad16b80a2af76ee006d809de0b55eaad45ecf8984eb0625

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 27d6ad124033f5aecad23c1d94feb054
SHA1 f0a17d1bfa516ff5aec029ed0b73e55cc5c20633
SHA256 fd1e52aa9c7c58b038db7d722a9344c71951f530e47c93d188f730a34d412809
SHA512 a0f167214540c07207fbc163ffab40542c25a217ba2b752aea58b0adedc6c65fba8e3c1bec1cee13ec3149694245b79e3174d11bd9b966e47e75b172886c32d5

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 60ad19bb6fa731611c70b76dc458344f
SHA1 abc47174d563e6f80a992ab61a4b322b8cbdc3b2
SHA256 7fa859fedf8dabb421936c62f3fa7d3e2bcdcf05e3d084c236676685edc927f6
SHA512 7d8bd7ac7c02f812bbc047786707c8a1234c17a377ee0fa0fdd2b8a463e063612f1437ada00fdc681de0e267c3d6f43692ec64fe17cafe6fc177b94f8624e9bd

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 6af9845848ab3ac9ab16a0ca47bf05d7
SHA1 0e32d1adfa7d0afc8e5cda0a30c009a334e5377d
SHA256 67da8c899da4453094aca710fb263d1ee2cd92cd9c16412f57247cb9e60f3646
SHA512 c9b8b6ce60455edeb2ad5011edfef8c0d0d4b917fdf6e38a2faefc9258c5562cd3aeca3bd39856b7b38e2af0d2923a02e3d4d3e7d8c183cde50443a17411ca69

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 4badb2b6f8052f82beaaf5f857074af2
SHA1 7ba1f24cb0243a07880e91073c945455044fbee8
SHA256 b551e286cc53b72a0b5900ffa0986b303ac87e3d1c158eebf83dab9fe0713a72
SHA512 0fd0c39a4f31f5479ba2b1c459578a31a986396a807c377e7de0601df10abdc6a071f29881276191d43372e676f50cb4f0c63dabba0e92f0023f8df76d262b83

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 bb13828c3a59d08814c160e32299e32b
SHA1 0e5949fc0e4391d5641c3b6a24eea4016f4e048b
SHA256 688b6ffc606f629ae34ef78e17c7dd0ae0ebb59040232004f4ac744d41c2f8ca
SHA512 5fc98bc76f8e10560bffbc45cf87da7eea5da2a62f9a000614356a784af22a70f5413d096b853013489be6ea677db273d67780aeb8e31225018a316479953806

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 12b7306d187d80fa94965cd393ea3a85
SHA1 77a14e992fad9ac5e9c428b489a0df2c9fea1bce
SHA256 62c65a60e064ae4f82372d4aa9f9382bda712bbb3c53c576d47cec18b7b4b644
SHA512 26a1ab12482c93870d6fc4a8458f2cf4ade6e30b9422148f5e6d64c14c9067a4b392e5d5592429fa98689f797adb06c4016276941bd39900f97aee751c4a96b9

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 65fb5aaaf9768fcc0e2fc412c802b3ff
SHA1 61cb96b6ccfc8b0ad5ea3c27c2f29c25a8e61828
SHA256 a4918a54655cbc5335847eda0377bc6288f07edb24f6d4541b7d1f8daa80918d
SHA512 58e38066add0eef9eae58cdbe0bd8c655dbf3b64ea27e944fad3278e82dc5288fbe68a46a9a89211e08e1c66d0266b8c990c512377a655e63e020119d064d2d5

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/cheshdb

MD5 489c6e055afb434990c299810e9581ee
SHA1 b23d3eafcdba9027d6ebf900c725580ffdd772fd
SHA256 e2fe057fdab519561e64a4b6aa062cf21bc980928249d1dc906e1878bd49bb1c
SHA512 49bdf92937b013a438e7f8e86f5016cfd49c2e2cd0692ce7d93d393797c99342b9a71de93f532c320e5106183cf877aacd247fa8de3c2b61ae345b52ab78140c

/data/user/0/ir.teliyam.ashpazibamaikrofer/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/a101545c-39b1-433a-a73d-4b72b0b6aee9.jobs

MD5 79210828b5d2b92819a8afaf0b40bc03
SHA1 684063aec2d25ff0f49069ef7f1a7399e6fb52cd
SHA256 a300c439167271ed63ffaff53daabee9c1165b660b50387a512e2e427407e4fe
SHA512 b2b9054a61812d72f4922480477e13d384dcb3facc094afe0cd88be1413eb5148d10aed4a10720e84e9f8e79fc3dc877e82d152d28020678201cf90c89014531

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 542307c892506697ab34e16053c0dc44
SHA1 47f2bc6d43b455ce9952ffac59713ce07f2d7c2f
SHA256 1ecfeffbe36dff191177ade42ebe80c191fdd0e2692440d9802157e96750f280
SHA512 07552ecdbc295be09e73896fcd0c516173fe5f5c87559e805f45203d8633a9f8d6279118beb12df3536c53e6a63a6db0d0ee65560574679828c51d567decdc96

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 a10f95abb9732bd96e347cccbe156f5f
SHA1 9f604ff61023183a445864d80f409aefa064d77f
SHA256 0242b5826cfcf9094d93622b21720488a37427228e3db67340acd06bbfb84ce4
SHA512 25044ca0d04edba3adc2c6d9424f13f3dad01c1b4fdfab173d3297a1f47adadaba662769262304c385ac4037289a61d4fb902479eb1778022dfb5fdbe079e47f

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 9f2d4778ab188633bddc06b4a1b79842
SHA1 6812de7adf739f66f8e71c8e3e9b4229c0c3ac60
SHA256 0f7b68fbe654554c7fdbc2149512925742e8a4cee2c45c7bb3ecbf2d676ba65b
SHA512 28659dc9996704e4eec9b7629617fe75e76e4b97fd93ac1da1690b4d4e842c44f98effec421332b8bd72351356785ad6da78a663d5bbc97f1ab2ad69c7a936b7

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db

MD5 dc1e3da93a72faff6fb880b1cad98331
SHA1 076da004db01a94e98674cfc654fd2d292a3f23c
SHA256 f53332488c18538133a014b64c945862780f6b1ff84aee5dc88c94d993b57fc3
SHA512 e7b0843f8e48b9b1ddc8fbdba9f71f63705c9f6480125ed1a56df9a837d9c5f0b6fb372006ef5205e47f1c01efba8dcc200f59e5c31cfa292dfea3b79171d748

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 919b3d73af62bd37d7f9615a96941eac
SHA1 bdadf11bbe771a9e1b04a90cfe4db9b6fddf5268
SHA256 20b290f19cea2fdb01cc82d70d80f7b47c148b2c5f49f9d9c7a807fe8091189b
SHA512 81c7b4331789eb3a9ea52e2d580185a0ecbb1dc7acd52f31a1f7ed9667075517028683963c387de0201a4b1d24edb8e565f521b476de3586d189f0756bb3c485

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 79a587ca290ef65e859e750c2cde7a09
SHA1 b4d0d307fca28f693d5e3662f04d57707d3950d7
SHA256 f590522f572a5127a39cd33fbd3120c2d412c76634dafa43f2317d1c2c2f1b96
SHA512 afc324044bd8f59034dfcc5aa559f4b74ef1dbfe3477dca9eed34bd6bd80898bb2a848e7af5b48526233b90d622043aa612520420293669c3d3b8e12d40c914c

/data/user/0/ir.teliyam.ashpazibamaikrofer/files/info.db

MD5 da39c3763f631c3547d65821f0753431
SHA1 7b60236952d6fe8bf05b84132f9023ebfa38a228
SHA256 90fc33a474e9ccb907024700ae1824c2329e0e3da2fff8abd9811b029891f02b
SHA512 f56783874d42ce3359e1533a3e5be27ada12ffab0172ea6234a453b2c68908137b4a6de6d0df36202f28e71735bdabafa35803d7b94f1170b81dccefba71088f

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 e3dd670a613941f863ecf67643840029
SHA1 88a3ffe1664cc70dde1662ceaaa0e0e1cb44ee9f
SHA256 fba9cf0e57a7347049e957a88f65bc83cb97cfb280c9f4a7de2478c3ee343fdd
SHA512 8795ed7444836eb10c2ddc8bc49a8b27f94d78fed2f55ac565c4557302271ccc2f6d2ad9c7610166f49d066ea22358d1e9f2d980c24ceaddb99454a535a8f5f0

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 283de007f8bc67644db97cacde22894a
SHA1 818c7e1058b9e1a6d9950e9abc265b5891b8c462
SHA256 c287d5048488bc5d8ef93c926faeb8ad2931f2bcc61a69825dddf1a335eb3ae1
SHA512 fe16739b30a533ebe8037ed54ed1388d299434ace7c4639e676c296b6fe339c3865ba6f99285679090177d3edff520753b60b46dd08a0d3c0007f3e38d55dbf6

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 00b01c13923ff2e7f30734018e565d54
SHA1 27e1c70ca8cda4aa7a32f7c03aa51eaa7e662b74
SHA256 72952117494db25b55246c932924ce21c620de508d146c90f75180596aeec25e
SHA512 e1bdc1d73f1b579776e854ee569481483404e662edeb9937eb8368461cb36be4cadb820d33c675c70832101a99ad9fd32b4e0d710d2655dbcbbba80f1757ee39

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 98ad14c926c0ba0159dcc3380f737c34
SHA1 d5a793a64dae4ca68bd38366b5cc396f51c4f3a0
SHA256 890477ea5604cb6a28f7ada697ae8dade0156bc7f588b6625441ff8d0101e6f3
SHA512 3475c20638afe6eb927279d1c0152202ee287d7bae13622b85255193ec4d644a12c1e61716517b2cbfca83c290201dea3ccaa7e7ca6a9172796e6fde0dbaac0f

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db

MD5 461fb682177b1419021753e0cfcf37b2
SHA1 5902baa66f3e2aa41992ae7fe17b84166ce8fd37
SHA256 24135e0e315cb70ee5990a951343d97dce1dbe852f935a0a9173118f38cb56a3
SHA512 b276a08f19cd1cdfcf07cb6ee8d528174c80c4f98f9f733ae3c548f1b398698bfaf1506ceef865f85e24a39d4086ba2a8f394cd8b7daacdd03324f249476587c

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 e25186fd612f4d61a6ecc1ad9c021793
SHA1 0761940d693c6f2ec089b43bacd15499f6f537db
SHA256 7babb9fdc792c5ca8db3f3368c57bd6e98205f1d94f03cfd1242f4b4cc55b524
SHA512 76c21d035975a779482632ad947a3fdae34f2e4834a3bd535e8aa709b2db9ad1473dd682091b304a368bc2aec4cea0f310ca1222faa3676c9b700be08e08d194

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 5a114528a530ad4cbac5115fbc90d443
SHA1 420851e6bc5b0cc075190920330246be305a1d6a
SHA256 4e848ecd09ef584896b63fbeae2d3a9635af135419cc6fac88b2f36dbe729b69
SHA512 b990722de5c0ddfef2471b89cce2154b4f31bd794ad7919268d5b83313cb4fee3d71d4eba28a71c14b9746016211be2c9d84a78ff5d822983b8ba42e2e7d5f42

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 b6d3bd8d69af84e1b0ed9419c4612171
SHA1 1d866f1b0a92fc4c9ba9ed2093304ed5d726f5ae
SHA256 247852d2a1fdfceae9319c084a7a6ee8b739ae510ca8fd5840379bc914f41d51
SHA512 9cf6b58878591236e1b1506efa3b6d25b97efee6da2c642f014b53a5f379006d8f535013a71f90608fa682539e3a1338ce855fcfd36882e5eb328864f8f4acd2

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 d3fdfb026f52329bd69900d3244a6372
SHA1 740e840317eafc23b435a544258f9ab559be9e5e
SHA256 c7df804b15a8483e91d9b75f09b649a054a58daa31ca0cc7ef2df440d46d3e05
SHA512 35893c57017a28da4dea60fe676557be801dbabf205410fc162c5ab54a32a4e665a8360b8c09f106669e0106faf80f7ed14f0d2f6d45001b15eecbc9894079fb

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 e92e0d0cef6c712f1d68525fa6cb5692
SHA1 7a5ef5c6bdc11481800e633daac1f1558bbdac5d
SHA256 6daed4d7bb84b1eb8d22b9986bd9ae0ac9b291ff25238c90c3f79d55a33caa64
SHA512 38078468ed49a7a871cc89bf355d134a0caa16e2573bd5170e11f1afa8a981605ccbaf37679345cbbc6f1b2099c0874891aa2c38f9a6e1723e7d924393d5b72d

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 0ace60b6d311f1535526706b89a5fb68
SHA1 bfac240faaccb5fc0b3c07e4ef226188b7ae413d
SHA256 099c3f99ca81da5da7ee201bab7aefc045f43548ba612adb9a3b34e99e873e1a
SHA512 2e37d8d035ab3a0a4a2e104096fccea05b8d7d87cedf24d8faefa5d37aa1ea521ac8c1baf2b1c092f85389e06af6300b2434e4830851ad1d732c753c69f415d7

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/cheshdb

MD5 acf3ca7ae091f2b51dd7eed436895f4d
SHA1 17c07ada565bec8f89c2f620f56649d7dd0ca5a1
SHA256 2e0ee1ae0b1c7feaa7c056f1fc3ccdbeb6b6a6725f3ddb8152682d1856ba8c14
SHA512 465743409ace91883ac1032466fcd703834235830abf15c7b2395074521b60973c4b2da8ab36b0cc19a7b5f1da84d0c053894dbcf651ab204677054ec26c8aaa

/data/user/0/ir.teliyam.ashpazibamaikrofer/cache/1582435991586.jar

MD5 e8e0527a01aefdb89afd2c508f131da1
SHA1 f1103e6b260c657ceb3d95f1b023af3fda8b133a
SHA256 f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce
SHA512 fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34

/data/user/0/ir.teliyam.ashpazibamaikrofer/cache/1582435991586.jar

MD5 fde2ee00cbd121cfab5290b078aa3ceb
SHA1 e2b77d5320e155e413d040a8c20020962065b2f8
SHA256 2897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685
SHA512 a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56

/data/user/0/ir.teliyam.ashpazibamaikrofer/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 c5c07e11a25b4b7fbaf30bc40326cbad
SHA1 a19fa97be3f943eafc04b9ff38ada3dd6dfebbda
SHA256 8598a162bc98fe69683f9bec0e6741ff384a6d0fc34678fefa3e7d69290feb0e
SHA512 0e15005cd5862f9e3e22e6df2ff067a2c943c693b0a63effaaec181fd6f41784015b91166048e2ee39e405e7038e258b512583f03cfc003b4d466abb61c34996

/data/user/0/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 a806bf314fc80df58c4043ffba97adc3
SHA1 7aa95c690f77b6cbcb07fa20b1fb6a2edb574a91
SHA256 08c21815410fcb5c6db0640509d93f90f7cccd4336bd6798665afa2774909d18
SHA512 1540ec96cb0e492d4f8e5cc4b4b5aa9520c1c353aa15503d4f4b313783322a3c4a4f64d5d769b32ed5c4e20c5f53bb5f92ea2fba96e4bcbb52ca704c773d4b70

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-15 18:42

Reported

2024-05-15 18:45

Platform

android-x86-arm-20240514-en

Max time kernel

62s

Max time network

130s

Command Line

ir.teliyam.ashpazibamaikrofer

Signatures

Requests cell location

collection discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A

Checks memory information

evasion discovery
Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/ir.teliyam.ashpazibamaikrofer/cache/1582435991586.jar N/A N/A
N/A /data/user/0/ir.teliyam.ashpazibamaikrofer/cache/1582435991586.jar N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about the current nearby Wi-Fi networks

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Checks if the internet connection is available

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Reads information about phone network operator.

discovery

Schedules tasks to execute at a specified time

execution persistence
Description Indicator Process Target
Framework service call android.app.job.IJobScheduler.schedule N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

ir.teliyam.ashpazibamaikrofer

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/ir.teliyam.ashpazibamaikrofer/cache/1582435991586.jar --output-vdex-fd=89 --oat-fd=90 --oat-location=/data/user/0/ir.teliyam.ashpazibamaikrofer/cache/oat/x86/1582435991586.odex --compiler-filter=quicken --class-loader-context=&

Network

Country Destination Domain Proto
GB 142.250.200.42:443 tcp
N/A 224.0.0.251:5353 udp
GB 142.250.200.42:443 tcp
GB 142.250.200.42:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 216.58.204.78:443 android.apis.google.com tcp
US 1.1.1.1:53 sdk.cheshmak.me udp
US 1.1.1.1:53 admob.mehranarzani.ir udp
BE 142.251.5.188:5228 tcp
US 1.1.1.1:53 www.google.com udp
GB 216.58.201.100:443 tcp
GB 172.217.16.228:443 www.google.com tcp
US 1.1.1.1:53 ip.pushe.co udp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp
US 162.243.147.245:80 ip.pushe.co tcp

Files

/data/data/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-journal

MD5 b0ca1f54f1658e7d0ba25daeb68a0c3a
SHA1 5eba2751b6f1c92f78af580d28ca81aa2c28c5b6
SHA256 f99639d685eb442b81e54a96a7666c1351eeceaf85dad302f3c17703c5adc518
SHA512 de0634797db6ab1745bab3886a9c5e8f6cdff003078dcbbdb4ed8a32f8f83fc1bd254dc6a1ca8d512e28a0c1e195f5df6269806fc7992d8d33b30d04ffec304e

/data/data/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/ir.teliyam.ashpazibamaikrofer/databases/db_default_job_manager-wal

MD5 e654a086fa427451c35186e1547ec75e
SHA1 d54ef5395a9d5a3ffb7941bb3cae759fddd18971
SHA256 c467c690b519e31cc600bb5e0dd118136cfdae795407376e3fa40d2ab3a30e38
SHA512 f46d45ff752cde56880ecb9b9d16a1e6f2d42829cecc96d5c0c8e19756a96245e76d4e50eaedaeca0d65ff51b5db8c4349bc8371c6a7fd57a63f3246060a8cbf

/data/data/ir.teliyam.ashpazibamaikrofer/no_backup/com.google.InstanceId.properties

MD5 86e4a5d5b9c1d74261a9ea6b37ce5cf2
SHA1 3bd9977e8a4c0ff154a571a2c046509c9935c98c
SHA256 e4c8c8d504fd4e7d932de8e5077bb63d3f094dadcae2914ace8b69c923cfce7c
SHA512 a87bebed62fc093a6ef9893f1b21ad9efc0fa87db40507f891f881819f142c613f992c729ca6bde8e9fc9c67ca5f1b2cd42504a6ffadeae1101769caa62dd385

/data/data/ir.teliyam.ashpazibamaikrofer/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/88c2307f-e6c3-4371-a11a-1dbecc4d802a.jobs

MD5 f56f328eea1d5c96a1b96dbbf59488df
SHA1 440c784cacff61932e2f61580b7cfdc3a4943c95
SHA256 90949c83a3d90fc0128f0d5df662aef3699971ce9e63ab067382f970cbab8918
SHA512 36e370cf16dac8b173fa182960789974d4087a7b607042000118ce518db8f1eaf93cf4f3be42c1c26ab53e87ff54da33b4c57a3a15e5cd47f2c2b66efe8b3edb

/data/data/ir.teliyam.ashpazibamaikrofer/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/d8c23eff-7cf7-4e94-807a-247ad339c496.jobs

MD5 ac58f99a1b179d71e8621412ad31c6a1
SHA1 b51fdad95876f5615735c2ab411031ff67d5e946
SHA256 9537553772c29c4303e606e458fd9598c14f1eee3cadfb446e241638bee3ccdb
SHA512 faf45d5eb4b890216e6ad33825ffc02cbc57914628e625164f9cbdacd5962ce8ca8f473ded2f56eb4d4006fc7cafa9cff8c9f76655f17f83f38d3e89b8d7e67b

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-journal

MD5 fdc98d589f1e262080ec0605e3571e3e
SHA1 a73d7be601fed5cbde4a55214b8ae70ef81a10c0
SHA256 22477c12a93ebd2bfeaa7756c9614d1970eaa6d30e1f9bc09d5ae7bd4f38cef2
SHA512 95f1d2fedd5a79efb2b8293c008e5b35ad03605a2774e6da09c8215c032e252a3e67d176b9e9ddfd965a3f93bdd76969e80641b5b258d82583b0920917b0ab4f

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb

MD5 1f347cea6a53594be878e35079bdabc4
SHA1 ae24631f83d3c875dd678040baafb5e64fc6ba6e
SHA256 46cc2cd48a3621ce276d0927dfaa0e367261e740d6c248c48fa48b25be769fd5
SHA512 6f09f140cda839271dcc15857faa5ec7fed65afabd0ed53164744e0b15c145b4fd0ae3f6ef0ad01cdf4eb612510f7f150ea72781740a9c6d67ed1075e5e026e9

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-wal

MD5 62a24e882d1a68db87b994df25c03260
SHA1 855453f69f992aae5ce440301eebdd5a35d40133
SHA256 b811d9521b00fdc0e9ad5bc4e6f9c2b0d92242ee478b4d790b6ebc0a75a328f7
SHA512 2b8213396b35a995a4fd7f2d5d742882f5283dce022c1edbf5ba3bc3f436df78bc7d376578fb19eed6999a4ef69c4a74b4080b039787934bf3d5da3e633ddd6e

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-journal

MD5 6b06cd69c598a56ed9866523c6246599
SHA1 9c5ff4328a6eeb37c63d7f41fdaffe3323df78c1
SHA256 d5a3f4151e325b99e8346c976028714068cf450f2c5ed367e129be0e5b48601d
SHA512 81580b31dafdc3f2a01fed0f7daa5684d44d9a4c0fd20ea43d1ad56c00a0841522a9a08e8dccce9829abff8cc987e06dadf22328a77b7e34dfdebafabe5c57fb

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-wal

MD5 b8e0cde67ae0c3f256f22780509c9c67
SHA1 284492a2435780b7307c874e33de920b17382439
SHA256 4cd6fc3b89f6ba14e3bc495e60d858efb3aa23b2b79fdb59778edfe80e0834fa
SHA512 0f715b2159ef9afa6d542df1e71842208f78d008d316508eee0cb892e75868a999a86e54fa2d8b76204498b8c85ee84640a0a2b36d3d66f40a282e64dca2c787

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 7237409e0640cfab7bdbd429bf821a3b
SHA1 4c3da934842f8d4835dfe2a9c275a300e5123309
SHA256 5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512 c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-wal

MD5 28a0688ca941ab2e40468d499b46866f
SHA1 b0b4132476c3e117fc723c27ef9e6f23e749b63e
SHA256 f245739c0ee7132536a1bd310f764374707e2b1d04fd23aa1f690dd7bbda9d35
SHA512 8d1353be542f94f09296594635481ca5e7d818e67b1fc3a7076277da14f4e3803a14c8462a76b2e3d09a8dc578b1866fd8beda514a0cc5ac215f68e4a0a6ac10

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb

MD5 bca9ad7b7aea9b1d00055fdc3986f416
SHA1 81467ac3b051231837688d8d0c51dd997d2a3c3a
SHA256 7e42249e43c6976d339df2b954f1838e2de67dde46294e5428e6ecdb553ac316
SHA512 109112cd37b056f05b810b6aa127810ab740d3ed7a111d4eb45018f276587654c09196a95fea16507039174c63cb53f3d08d2704f5c3a2c2d470f7b4b9a43261

/data/data/ir.teliyam.ashpazibamaikrofer/app_com_birbit_jobqueue_jobs/files_jobs_default_job_manager/e03e7f54-cd81-458a-88c6-6efe7a6c1e08.jobs

MD5 dad6936782e9f8b4de69c641373ab61a
SHA1 ff1e16e426f4a154cb29f9d1dcff951dec8f212a
SHA256 70d061f4d9c94acf968d5ff435e763254e93b85a88e5387243bb7936d23b0f81
SHA512 7a98149729ac97a5d5124a2cec22352384eeae6fcecd6381ff3995f6d5e39b4911a90695db490654c349604c471c25e6942374c6127754215fc5c093a58229bf

/data/data/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-journal

MD5 4e6bc7f94040ddf6b7bcd2b925db9ea0
SHA1 4af03b568a84e13da759db1df91b2dc703303c4f
SHA256 11a4b0f63b0bc17e5d0ea147869225eb401cf98baa7283037dd778a98ff30c19
SHA512 a357dd81a71f9d3b315e13965f7f2da212a087aac5bf3ede08c81b4b1121bbf87f1c180eb8c26db3911b9e6159e004df39955e1420b87ff00051fe8e04a53185

/data/data/ir.teliyam.ashpazibamaikrofer/databases/__pushe_base_lib_db-wal

MD5 e2ecb842ff5449e204984c1191dca0df
SHA1 92da67665db82fa5c7bd274e28e5dca6ef483d3d
SHA256 24938a5144af96b195665c9c1d37d16b9f369941a7593c186942a95fa1e1aee7
SHA512 745fa459b020e42b6426395e98e163cd3a3a5e49e72620143cf6fb094d80630d57af54b059c37c3288fc19c6b67e1d839c468e0dccdfa5776426bd6c55aa028f

/data/data/ir.teliyam.ashpazibamaikrofer/files/info.db

MD5 da39c3763f631c3547d65821f0753431
SHA1 7b60236952d6fe8bf05b84132f9023ebfa38a228
SHA256 90fc33a474e9ccb907024700ae1824c2329e0e3da2fff8abd9811b029891f02b
SHA512 f56783874d42ce3359e1533a3e5be27ada12ffab0172ea6234a453b2c68908137b4a6de6d0df36202f28e71735bdabafa35803d7b94f1170b81dccefba71088f

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-wal

MD5 65bed71023a1a7997c33d588b41d6d6e
SHA1 c2c4dbe620a0701f5a1c1a8e01bd147475b3be04
SHA256 b333094b870064ea99f521f237afbcb658067c0a7f19cee44dcaaf6b3b476293
SHA512 01b8f030ec6765529a3f88e348a7de6c5c2a35a3c533b14a51b36588503b2372ef87bcf551e0601196320483de91d8f4eba45e8f76cf5d3c2fe44c3436c31583

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 62dfea9b3fdfb5da801d28a02344f11b
SHA1 9daeee9fe63e9eedaa6dfc7b32d68efe51c574e7
SHA256 64ffc0f864269dfc93bc0342e011e4ee446474a038ba18d8639c733b6f8e8f11
SHA512 c1b4c3f79d1225caba54849a773913d4f94c6466ff66e1c0b9c2f11378440f0b6ba0618c1f19cec76780fb193450696e6838ea1c0c5bd63674ad4f15a363a998

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-wal

MD5 6fe66780e5f677bd77f71fbe229f387f
SHA1 9aae15ec7143677f44b1cab9e4ffeb66750dfb90
SHA256 33becda9101fd59a604620fae6e6fab158226d80191b82d0fedbb2748410b407
SHA512 3f4fa72096cf0e8d0921e47da5b404a22c7fa5e5e3690dfcfb57ab9862d96ade7a1f4b40158c313c9746b7f454d3e2778fde10a445bfdbd56c805078ee587464

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 6dfa23fab4b79fa92cdf38dd4360760a
SHA1 0db1c3519a9898299b4885a269936fc63f69f169
SHA256 08e22b0cc0105cac21582355340011e2b5b069a5bf0e6fbe4cb17ae9107ee96f
SHA512 f71aefeee4762830b8c1b3e757150c7d7382126a8dd6b10bf96413c2cfc01a251c1eaabb97ab0854e2d93d54fe982bb8eb8d5fd75b9b1a488db66cdec4fd89f6

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-wal

MD5 8b3e98e9220701433e2a49d2683f137b
SHA1 d94486f058b9e1402c578db9cc7449a6574e1df1
SHA256 96d2b8e34685ab8677baf4c19affe451b6db46075a25dfaeb044b75e4ae79d18
SHA512 fb706577754575c80d8b6a675cc63409495a7df2d83f5e962e2cde88dc31f6b86c34a7fd7d0e72a818aee09948d0dfec187b02b7f7c6b64434686b844de6da60

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 a7cdbb2a32b925cfe8d89f551f836c79
SHA1 8ebc46c564765de220d0346589f7ccb1ae242d18
SHA256 ad603d495579ce946952935a567e65d0e36665d4e11c6bb80d3b5a4143432b91
SHA512 dc5701ef8585b0dfeb67e4fb3e260348e15806de59e89768c04f5d3218e88c78ba2d2a7853c3d85ab16e97d35ff8c8c50505a221eb72eaa3f5e064777f9f8288

/data/data/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-journal

MD5 3fed77abe5523da5d966de9e370f1b14
SHA1 f538f9b87a5796fdb943e81097a0f2d5bfb92e35
SHA256 84b2f269f22f5088521b969ca706d38c29f12177de64528c34a7ba53daf080ce
SHA512 af8653afdcaca42b8fa8b08b6119f471f340a334657db6efa1a2c815480ad8adba04b9393222c66a71def144a66244c3a803148882ebb3b4f9f3e5173f5d8d9c

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-wal

MD5 501ef5bb835e3cdbe027bcbc1ec23cea
SHA1 9e4551919aa67f4b8bf5f0f1af7e0de570c196cd
SHA256 5667e49f79263f9c0ee7ceed867f7f5b17f56a3de121720f759f533165f53911
SHA512 5184ab4626cf2a04fc6a943953ea430387113d21e115b639eae2c820f0a09e0f3afd6bb35a33d291b911f8620acc655ae238c2cc9ceca35a815cfe6d35ed01c4

/data/data/ir.teliyam.ashpazibamaikrofer/databases/evernote_jobs.db-wal

MD5 9465007c9fa19fed8eadc827eddc3bac
SHA1 6b4531b8115a75c0524a29bc41f4334148cf822c
SHA256 cf5caf17eb5931a02d5b19ab30f161d8874ba39086c1e3a45b1a131cc8b6b700
SHA512 870b4b87532d34cbb968b873e6eb44bbeb7f043d360587193175672d6a87a3322600f623c1836379fcfe150e898636c4abc1d801acd8f17112b4961465b3fcef

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 e165ad2f43df1e30ca3d1d08962d9f4c
SHA1 b6362d1272172691b4822de3ba0100238e7ea7a1
SHA256 791be91b14cca1a6e0e153d526f0e72fad9e0d588d533a45d5a54ffb631895be
SHA512 912f3748067d193f1f4739fa597e1ee4014dffc082f9d298b416910d6c64fff46cdf39aea0cfffec6a16c2a9c9c1dade82c24b06113f39a47c9a7b1ae31dc16b

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db-wal

MD5 5244d5730398ea9ac29348f6c126cd24
SHA1 d4e646ba2302da6d6b52ac9b598e9e3f8f12891f
SHA256 a664c9facbeb310d964b942d1dae2cf3792a3745642912df234ec27b5e8d6b72
SHA512 3e6c74cfe4c236617a4996c806fd4d624b02dca3b5b861fc542a8edb4526f5013ddc3259770820dc7b96db5cde38034f819e7f77e70074fcd032e2f12153daea

/data/data/ir.teliyam.ashpazibamaikrofer/databases/google_app_measurement_local.db

MD5 254f687eac81f83e83fb1a3b80970933
SHA1 4e9277e042c661b695508e2d053e7394c5882883
SHA256 4b9953c90aa9f9b65744f4e8b7628a09a4ab8dea7988a3d8b81b04345746f143
SHA512 64fe1a5869ee19f73850f0e36e53a4cd6d561edd741777013a5181aabc100d076f46080b78ea0cad0ad3ad5e798da7e9f21b113154c25a28d332c65315c0f1d7

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-wal

MD5 3db80707fe789fd83dc1cfee7b389674
SHA1 c65eb6f0ce067341d49db4c449d6fc01dacfb361
SHA256 bb09a64f596fca8de300a46bec96b0b52325e36b4e97dcaa817502b548cbedc2
SHA512 fd306e506809f9d461dc8fca162e7bed16acf270eafed9ed13a7774e744934376bbef4e634d6911f71e220aaccd45f715deafdcd49fafa389bb6fa53179ab46c

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb

MD5 8ccf0b0e7a7c4a6e300a2f0638a111fc
SHA1 282b02e99e1f4049eeafa312108f7674844fcd9f
SHA256 dab64e758bcb25e41bc8190d0fb28e72255da5937f6bb63c416e6ac6cc80849e
SHA512 e24a5f77654f3e1cecf6639e136f45c70dedff81b0ec928b5a2b020ea54640e56a2f2b8e821164b71ca1040a4b01837183640b2526fce4db7947530399a630c1

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb-wal

MD5 67ed6ec480dda55bb00912774fca7815
SHA1 26c97dc062f04b7a55f27b7d349d8b3524cfca2f
SHA256 4d7644c71fb2fba88c2640664725ff5b5ac5e23dc21adddcc7c846766e8a31ce
SHA512 1fe345c1cc8d5dae99d458b377d64063100e776110266b4cb534abb2b73d451561daa7483b6dd2c3057450846e0a107bbcfb36f4fe6879572106011f8cb5446e

/data/data/ir.teliyam.ashpazibamaikrofer/databases/cheshdb

MD5 f20418270c66c5e6446c375d0c40877f
SHA1 8aed287fb84309d506f7e14c0f3d491c6089981b
SHA256 25c9ae996c46b1ac2926708bdd685689defa9c1d10d8f3720524db2829fadeca
SHA512 d1dfcc62f4d2621110924651a70abe103e514dec45b30c5dc73fa3ee6f6dcf2d802ea3908d043a50037cd5bf86c000ecaa7dfad5b596aa604a46bda4d35401f0

/data/data/ir.teliyam.ashpazibamaikrofer/files/info.db-journal

MD5 42a429aea8e10be91673bd2f07dd9e34
SHA1 38a6437a7660251c7963e0a1708b0e589f9c0a7c
SHA256 1ff75094be3b5602c0dcd5a3e70866c7429c7b2b02a3005dbb0b0106a35e4593
SHA512 32fa6c236aeb4456d269fa2344b1a0e308ef5e2395fe3ec3054b17fbfb56e114c3f537d77a486261c7b4a6e6e7cb6befcb3b9a538a4e38436984d1bce91a3ac1

/data/data/ir.teliyam.ashpazibamaikrofer/files/info.db

MD5 9e3c5a97263ca221a0f034a1cec6d01e
SHA1 0457526df29c4aa929b3fdf2bdc74d50e3f99f8a
SHA256 47efaab9cd3919d7b9f6dbcd2ebf48a33fc092dc1eba44f8944e0f28653c78ac
SHA512 d42878148d77fabaf2c6cd628ad3657be3cf917b0b43a6ecae9e3b14fe7f9e0d9356081fe39eab46370527aab0beff85ee0cd4c0945d6e26f145ff2877b8ae0c

/data/data/ir.teliyam.ashpazibamaikrofer/cache/1582435991586.jar

MD5 e8e0527a01aefdb89afd2c508f131da1
SHA1 f1103e6b260c657ceb3d95f1b023af3fda8b133a
SHA256 f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce
SHA512 fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34

/data/user/0/ir.teliyam.ashpazibamaikrofer/cache/1582435991586.jar

MD5 fde2ee00cbd121cfab5290b078aa3ceb
SHA1 e2b77d5320e155e413d040a8c20020962065b2f8
SHA256 2897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685
SHA512 a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56

/data/user/0/ir.teliyam.ashpazibamaikrofer/cache/1582435991586.jar

MD5 2048eb6124a452540ee51dae4145aadf
SHA1 d05005b2cd7fe4cd652b0d7fd1bdac2c19d51451
SHA256 105c54b6fe3f25350e92187467761598e4c21d62b1091b77d091f65f3bd98864
SHA512 bb6cb3853dd2a5d0701e20607d4e153ae201268dd2e5e2d06cc2df208b3b4dc50132a4ab428251b1644d2399fcc717662438d082ff14203387bab8794109d44d

/data/data/ir.teliyam.ashpazibamaikrofer/cache/~test.test

MD5 098f6bcd4621d373cade4e832627b4f6
SHA1 a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA256 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512 ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff