823a55ab682c86583af694a3f4d94dc900a2328011b28cb421f5ed967c4d9dab

Analysis

max time kernel
47s
max time network
130s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
22-05-2024 12:15

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

FollowBegir03.apk
Size

3.8MB
MD5

13b639635e2785583ba65b3150138f8a
SHA1

29e2a1dda4f8324a925ba631ff675c46bcc98263
SHA256

823a55ab682c86583af694a3f4d94dc900a2328011b28cb421f5ed967c4d9dab
SHA512

bb2220bc910cca8c7a71160e51a189f9a021ba3ce340f8ab31e50ded44c82a6fec560c0b54e1a4a5eac37ee61787041d602662927a6a1579f5703ba5eadefb1e
SSDEEP

98304:bG3BfTJTo1JrbecEqENn/R3+9J4FvmTIPD0J/Bml5yw:bGRfybebBpmEvvD0d8

Score

6^/10

discovery impact

Malware Config

Signatures

Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

service.api.insta

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo service.api.insta
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

service.api.insta

description ioc process

Framework API call javax.crypto.Cipher.doFinal service.api.insta

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	service.api.insta

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	service.api.insta

service.api.insta
1⤵
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:5117

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/service.api.insta/cache/com.batch.tmp.b82595fa-9ac7-4084-84e2-c89772993bcb.json
Filesize
77B

MD5
bd5d2a839255e0187cfcafbb699c1e7f

SHA1
2dbe6d3f14150f19ef12ac90664409d5f0becb6b

SHA256
f3092404dcd1628bc8f9103cb0dbcc4d60a0075756a672b24988e72c4cec7dca

SHA512
4b5ba0063f42e8c575252acc1b14f6740271ee654f502da9ee6ef89ea4982a82aaba53ea1e9a2e49ceedd792b594bb5d5ea265c48e45658c95fccbb43bd3e1ec

Download Submit
/data/data/service.api.insta/databases/LocalCampaignsSQLTracker.db
Filesize
24KB

MD5
95346fb82e6be798f281a46e5cd57569

SHA1
bc67567b8885c9db80a314b62889af93602d0b99

SHA256
3da54573c88adde33812ec6976f251ab135d6b8f629ae444aad5ec96fc916608

SHA512
f97226e5241815e3cb3322edd030c96e2f400f8b0460fc2ca836a384164a3934eb289e24455aa51b1e6c8ef2efa15c6a696d1eeac4e71bf7ff9760765592e6d2

Download Submit
/data/data/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
512B

MD5
4b606157b8c94e4488a966769ce0e91a

SHA1
923dd3fc4f3af73bf8dfaf294eb4a4fec9d980ec

SHA256
8eb458ac94b07316d26633d94ad6cf9d6d637cb8bf35a27f8bc0e58a3bcd9c85

SHA512
831c549b14d4bc6768ad09ea11655a0905d4bd3b186325631dc2cca612d7f883c75e4d5159b85cf126c29f283ee590fbfca2d459a1cf8c7a13c0d34f97b53fce

Download Submit
/data/data/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
8KB

MD5
554f8fdffece5fe0f8d6fe8c25cc8fd6

SHA1
c951d549dee11703925ef9bf46c6e27139d4e933

SHA256
7fe40d38a4233b820b9fd5e533dd91d072ef2d4df727122411ee5079fc38fea2

SHA512
3d98909ff7561ce5df807e38e6a9f07e480c232433bcf321cdaa7d08545067db36225abe2b28a3e20cc3fd18a5f800b74b7737fd959d35c998ad7883ea6c33a2

Download Submit
/data/data/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
8KB

MD5
5c6a7e7ae539e5740fb8b4ad2db3e3c7

SHA1
1771252bf6c7fb90036d83002ad93cac404ede5f

SHA256
174020da619866c99ff3fe0cc23454d1cb14b53c7a8dfc26f03874050e93a23b

SHA512
b62a1cadd2e34dfcca97c50235edcce58b6d6377041049f9f8e189a0497c91a362bae433c6ee8e8fde89e88c491489600625dd94d369306ac6a9c4bbab05f80d

Download Submit
/data/data/service.api.insta/databases/ba_tr.db
Filesize
20KB

MD5
9b07c7a4fea48ec3fb019bbc950cd718

SHA1
524d3b37588f066bbfdea765cef37b17c9e1fb7a

SHA256
39e5b44de4ee92c6d760a9a2044d06c1e2be04d4ae44a6196a61ba415ae605b3

SHA512
7062f434a6c24bb817c3310099bc1c255af9c7d5b99819656da95bddc91aca8820d4bab84b1313e9f1688c5a7a96fde1cd134ee6a695e954c9da8875148dad36

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
512B

MD5
84da9bd627727e58bdc6a00c23b072c0

SHA1
f1ebc7044919d6b89166807a4f27dee6439d9d8a

SHA256
1165bae6188621306be688d72e17e6d9427891287832d8964a79be3c7d136338

SHA512
1ef21956c7001fbd19d67169d1b5fafb6282149ae668d9d1ab78c4a70642c5074d80b1722297ecba36d19c9d65075b0f79e83acacb1a4542484bbcb22be8cc56

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
34037182f43b37e720b7832cf280515c

SHA1
cf852232596412ab058f2499cff038ee53b2a116

SHA256
a985304ecff35a176dc9fec6fe97bff8de979c345f2a25ebbe0eab845fe13768

SHA512
402a33195e5b655e36bb245ab2e61cae5ab0f65d85d74e16a948ad93b863de75a4311815db05a8cd354c92ee9785439cb0b695b23416100b2ee71b9c19453a4b

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
4f9632a0449e8032dc4d26de542f657c

SHA1
f1da9efda068c551de6970465fc3763c0a2ffa4e

SHA256
fea07d3d79e30b702e167a68999561f56d9eb9e953a5677678c7e213b806e821

SHA512
6e4644bd1ceaa47e63cdca03c77cb4477e7980f34f4428bd1af1c1a7ac4154aff5ebf67f83277054952f0d4359e2464068175703988b4c0c2a7c611526d91ab4

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
12KB

MD5
ad9f780ed450ab87f83015b856eb2b98

SHA1
333a76cc21b5b89e4b2ed4646fde9137d9b34dcd

SHA256
9887fe143c600a627ae733c7bd93208474575c7c0d0405cfcb84ff915fa906bf

SHA512
f08e8f12f6221d43551efb7ef27ac2e478f9ef361039f6dc36b6bfc8bcf4e3511d33572a90f38ef5e1791d72cf3189d342755ef2f6ded8279f382762e1498231

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
8df9aabdd888506010fe756bf916e15d

SHA1
b7e994e07be41f44bcf0ac8d82a628a7e7512045

SHA256
fa19ec74ab540b02a7b3479930d8bfe7c51840db8f171060285c1a0d313caafa

SHA512
364431d33e4fb8682cc891e13df91f61b7d7344dddc7ae1e27dea394d923354fe4a22dc6c3dfb7ac9e394a0fd704a3ccb0d7002b5da86ba780bfb29cb966455e

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
26b85f268dde656da204d9b1ddaed22e

SHA1
66f0221b32e147c859dbc20d81f86b7dccfc4840

SHA256
774284b913240ec19499432a86f04e2fd213d8e3f4da1969843741dbee4468e7

SHA512
c4bede022379ac3855899bf4b92d56bdeb03603b6cdc14c3fb0c7ef285b686a6b6cb3955d0bc58e69e42541385a482214869976d532ccd753246bc55e77f89ed

Download Submit
/data/data/service.api.insta/databases/i_user_accounts
Filesize
20KB

MD5
f9234d2c848f360b63b50c9fa4e0735c

SHA1
90967fb01b1f5ede8c5883e10a05406b8a726a7b

SHA256
d70c6509d85d476dec1ab86dbb2005598a7ac090b6653b326e97e5575a7de584

SHA512
b6223be243fb30815e2aafe683127cd63299a3f6377b3997b5b66cf3f6b376750ec6038a2767693f2ad8649ecf7cc569a0613acf8507a1e62500542f70353732

Download Submit
/data/data/service.api.insta/databases/i_user_accounts-journal
Filesize
8KB

MD5
3d45b292b071524408977e3d413eadc8

SHA1
befd8737cfb540f13786c57ef40027c2add45e43

SHA256
fc02f15983dde276156ecc268e04ad5aabb8ce4d2cc6c9e07fc5dad866ff0467

SHA512
1b3687647ba0761aa7f0424a4fc887a2da3231e760ce38fbd63964e85677301558632a9420b2ddc39ddf3fd662012b9b3c713dd9841ecd70bd4d1f98697b7393

Download Submit
/data/data/service.api.insta/databases/i_user_accounts-journal
Filesize
8KB

MD5
1862b4c16d39f18ecfd2fa832790ca28

SHA1
020987ace0b66d0e00e65c63561c912913b347cd

SHA256
70728406e229676bc8550368552a5be9941a5d8e445763b611c7d6a2e5e69d2a

SHA512
11445a9f28ce16c34451b7f2031630fc2e5324bdd8eab5ffeee5161dc8e7e067d7220f44d9da57f2f98f25c87aee9f47623f8cd6cf57a4cbf13e35d782ef4e33

Download Submit
/data/data/service.api.insta/databases/i_user_accounts-journal
Filesize
512B

MD5
1a5dd3819cf0d7b2f74f157653c3cda4

SHA1
9f3928c5cf229af8fd1d835183bc17014e412cd6

SHA256
3efb4239c5f6065395f51ddbd00a1ae0851bb88a73a8b1c0d3cb6e812c967f3d

SHA512
af736b942e0403d9342bf95d75765ed371d7b10fd09291e3f9c01ab0cf1d3a78f4d4d4ed7856c6f780343af0aa1e2aeba8cf78b836c5049a8f59658875a568f1

Download Submit