43e18da04cdb37fd72469cae2e367e3386c4579137af254cc2340bf9d429e7b5

Analysis

max time kernel
10s
max time network
161s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
22-05-2024 11:45

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

FollowBegir05.apk
Size

3.8MB
MD5

0d6c7daf5362fdf4b90dea781c73b679
SHA1

7f3c9b5df65c15ba5e3b0f051cfd905c0aebf77a
SHA256

43e18da04cdb37fd72469cae2e367e3386c4579137af254cc2340bf9d429e7b5
SHA512

1b62fadfddec0105a77fdf60422b8fb0dc9ab57c5ff407275a02934cf1def46a045606d1ee01af45adcd9c961cf500e67a73800487f827d3129dc8a838ea3146
SSDEEP

98304:t3BlBGKnkaf1SATwvr+4bQ1mQeOTIPD0J/Bml5yz:tRhkaf1SscC4bQRe3D0dv

Score

6^/10

discovery impact

Malware Config

Signatures

Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

T1421

Processes:

service.api.insta

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo service.api.insta
Reads information about phone network operator. 1 TTPs
discovery

T1422
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

T1471

Processes:

service.api.insta

description ioc process

Framework API call javax.crypto.Cipher.doFinal service.api.insta

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	service.api.insta

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	service.api.insta

service.api.insta
1⤵
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4628

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/service.api.insta/cache/com.batch.tmp.0c4b8dd3-5db6-4fb2-8fd5-c6a84cfbcfab.json
Filesize
77B

MD5
8f489d48d6e0dc12a7174fb55e38a70e

SHA1
77096a70c410112c265c3673e6e0d4f8ac503790

SHA256
358c7914e5dcc719d68c2ecdd01409cb8eebe07bf5063a29aca4fd65473eb2a1

SHA512
b324c333f228576a506f9fc64aadc0ddb9c921ce56713613bb3098f8e3c45a1717878ff6387403bce4b7689785eb8390059af67b337e2922cfb23af7ea340068

Download Submit
/data/user/0/service.api.insta/databases/LocalCampaignsSQLTracker.db
Filesize
24KB

MD5
78dfb71ae220ffa608f09caa1a85920f

SHA1
cb55f39d84d78d4426837c25944ad9d114d0fe4e

SHA256
831c5da06e12d1e9cf69797541d0f0b81f5a2cac69fb883e59c56630d83d1e59

SHA512
397721f0447e4853edd947c3a8b9f2762e8f192ead431c8aa391d499fab6f013a71c8277b40eb6388695b11111b49bef1bfbb1fd8a24b25a0cd19977e36b0c78

Download Submit
/data/user/0/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
512B

MD5
2a68768a51db3544482fc44b9292b86d

SHA1
0f74c9f2db32a0ded86f74d86d7c1cf559435723

SHA256
bd9f8c2c3c4dc5d87c0e065830c0458abdcf32ff890cbb262bc59dfd5b1bc49c

SHA512
4482b7e33e09fe2388adb98b2300566d178201ab04b05ef5fe0514812b63ba0ca11849bfa083d0c3510660dddb0cec742a7f736c2c1a130fa1dbead4f89b9a48

Download Submit
/data/user/0/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
8KB

MD5
14d5c312b48576c18269d8d1d57476a3

SHA1
0ca7f63ce90a080b1cea3c519fc597079d74f9a2

SHA256
a272c18ab7261eb78a3373a35519be03df336e939e38fe0ed6376711bfd15e3c

SHA512
e4666c3c0edb21d688ac9e8844e6d3000f51ed298dc80662c70c253664acc6c1702b25cd7497326ebc59958481f6c1327e11f2f3fb014e566f6f094e8e737f6a

Download Submit
/data/user/0/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
8KB

MD5
883f0282a3cbbdb55e5a530401835b2c

SHA1
0d895b629d83fb934ba8f4e5d62f0738b89e6a54

SHA256
de5ad6d373f4252f57651a153a90b90dab4a312e4b41cec5b8ec077b509c58da

SHA512
c40dfdb1ffd1131502be48b143759f40e9d0e735166ae5820257d8f3cafc8dd0e89de0a3e04deecf521630bb366826ba00c60742e4831b7ce5b2040f97dfec05

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db
Filesize
20KB

MD5
c920a07b750a60a7f0c9a3d123c9a670

SHA1
906b175ff00852667299321dc770d1a25c4a03a7

SHA256
f38d18b51f7dd05b6438a00957b548b1ed812e0d1b1455286847f5c0acd9bae1

SHA512
b9e74949a5181d1df4f5080b04e78feb73bd48db5a9562eaac768a631adc457ce360833c1a73abfa9f3fd1cff0c1fd719920de9b102094cea975a49be5a9aae4

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
512B

MD5
a9305415307d204c9fbdde88a42b2b49

SHA1
d974cdc910cb177536c17664513d41693a9f3046

SHA256
0e6a29f86911f8ea088d61aadb12165221ba8b25508690c796d34b74aa6b0086

SHA512
7674865ac1220463e37603efb7aeae98f279ce39f276b1804561980e5302297a3f92cb415d0bb5e376d8bfe776dccd3d40f4a02bd001eac3d0fdd8b8db2d20eb

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
099d417269cf7770c275d51a5b03082d

SHA1
103ca6e92db06ef5c7af4fcb2e7e0c1ad2c4c443

SHA256
1196653ed0b83117ab0e0489e5fff34937720c4ba31327aabe4897a724acd345

SHA512
d41c39a0fd55a59c94a13cd92c7913171e7c576767ac0005bb7f355a198cac481b171cd43778aada7ab84239b121e37259feadb1e7f9c409272ac4d27c62d817

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
fef3dd06ccde2017a6c261280b5d1e22

SHA1
353b49c929f0221099d558cb346cdb6c4e8164da

SHA256
82a55abcc5f9fdcd0a31c4016d4d4c995cd121d9ef2630a4fbc93c8de31f836a

SHA512
71ff42c452334c23d702cdcec132a3cbbd454cdfe280d03ff31622d2f4db42884874cae0ee9354946c8335bc525f65c81b7d0546da8de5633bfe2f58d847fa1b

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
12KB

MD5
af1757307214881b305988552851ee56

SHA1
16bc377a5a305a47f10677e274f3063f570aaae7

SHA256
ce3efeacc0219bab19fb1cd528f7ddad48ccb008fe147c179cb8c67c1f0639de

SHA512
80d5af30f1d7396c0659864e301e659deb614a86689cae35ff47b854e0b0e69ed27f26b025e102380db000d3775cd50018296a84bfbadb4e10885fbe89c37188

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
3760f8157c0f6d9a019028081f48c4b4

SHA1
b98f0d6b13cd12f3fcff38f524ab21bb19534005

SHA256
ea6c3bb1385e139bb779a39d6f10d379c0505be41c785951fba76851350c2199

SHA512
a10d3861b29bdae00cc7da3f19a6a79b6d47f94690cbee7775d7928eb79a302dea75b8d8c0d2726136136e6bb6191b4015af74d07d466fe118e676f3551be7bb

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
57b6a503bfa3852594bab3ceab1c3b81

SHA1
326f492f96f9f2fac9246e8eb95eac90085f6180

SHA256
b2b6d8aa185847d7c0aa3b5cbf74a2b1e3caaecdc6f8d10ab3ec324bbb063eec

SHA512
f43b8c1d18b7cdb8e3788431a6ef34dc6448ec39b0f78b7738c1f4e003e70ba4c9f2cc842d7ae8de6311eacb201c2198a39675d043a67a09bba522ac7d68ea10

Download Submit
/data/user/0/service.api.insta/databases/i_user_accounts
Filesize
20KB

MD5
09a6926c399a760f83b0de3e7e0da5d5

SHA1
9f05d0887829fdbad70daf7dc4d3324111be8060

SHA256
baa824a3c9c829d19a4d89fe0daac534a97f0a7eebf6ca15d9e12a24b0228e60

SHA512
d9b26a548c91e0cb3e54d997bccb7a01ad951231783dba79b10bf5a9e14c05efd6e29afd3006ec17dee93d69ed7cb6394da9ff96c099f475ff72467190d60bf7

Download Submit
/data/user/0/service.api.insta/databases/i_user_accounts-journal
Filesize
8KB

MD5
5e96530b4f8ed28b11853cb00312a111

SHA1
ffb46f96da83656c46c0b0891dd80fd4d07f4eb8

SHA256
12cb044f5f0cbe704563f14fa7c9b8467c07b12439c6525f299bbe2ab809d16e

SHA512
5d21d5d313b0ebbfabae4657317d1f8ce7fc9b8a74064034f0649e79b19415e22c841cd312407ad380435f2dc29c154b3580daf5108d8f231a3ca421977f5c02

Download Submit
/data/user/0/service.api.insta/databases/i_user_accounts-journal
Filesize
8KB

MD5
ff812ffab7add41bece7191812b7cb90

SHA1
ad98c71796a5b3b5899470a1e9a17d7b9636622a

SHA256
277f2832aa6eb0640e272c85cbd48be67667f9bf64f2268ec183cb09ab25ed04

SHA512
cc077337edbd2b32d7dc3e9540fe8ab4eb14effa2c0d9c52b46091b6fb0db304920d8768a4fc61aa90f331901f15c3d65fe024c9175e45c21c71b7d134a48cd2

Download Submit
/data/user/0/service.api.insta/databases/i_user_accounts-journal
Filesize
512B

MD5
761b56b4814d0689ae238ce5e6fcc2e2

SHA1
ad7ba0617d77fdf98e266f999bfea1aeff924751

SHA256
e45eb7b9b05d4376748bb11da10b15d37bebc3d94d7781de22bb7817580ac3d1

SHA512
8aca4015ad012aed8d05696c0fc7ee4c274e1251fff10bea20d1e0c3d32978ffe71fb686d425c532c4cc98e9094bd8d9caa24d48430739dbf771853e11767314

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads