823a55ab682c86583af694a3f4d94dc900a2328011b28cb421f5ed967c4d9dab

Analysis

max time kernel
9s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
22-05-2024 12:15

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

FollowBegir03.apk
Size

3.8MB
MD5

13b639635e2785583ba65b3150138f8a
SHA1

29e2a1dda4f8324a925ba631ff675c46bcc98263
SHA256

823a55ab682c86583af694a3f4d94dc900a2328011b28cb421f5ed967c4d9dab
SHA512

bb2220bc910cca8c7a71160e51a189f9a021ba3ce340f8ab31e50ded44c82a6fec560c0b54e1a4a5eac37ee61787041d602662927a6a1579f5703ba5eadefb1e
SSDEEP

98304:bG3BfTJTo1JrbecEqENn/R3+9J4FvmTIPD0J/Bml5yw:bGRfybebBpmEvvD0d8

Score

6^/10

discovery impact

Malware Config

Signatures

Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

service.api.insta

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo service.api.insta
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

service.api.insta

description ioc process

Framework API call javax.crypto.Cipher.doFinal service.api.insta

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	service.api.insta

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	service.api.insta

service.api.insta
1⤵
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4667

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/service.api.insta/cache/com.batch.tmp.9f4fc547-452f-4345-b4c2-a6124bc4d593.json
Filesize
77B

MD5
fad89e9fd4a153cee54c6fed5cf51aba

SHA1
4ccbdff41aac6276f868f9b3a8c1b1e96e814fdd

SHA256
e4b88a78b9ea6d3d16435f105de0f8d5a1af83d923d0fdd550e2d9d53e504a87

SHA512
c0f6315cce809289093ede26d81c41e537ffff60d986273444291d67c96f37e8816c9721e019111df7718d7991b62a8f54db48415b532279f00344bfc456efae

Download Submit
/data/user/0/service.api.insta/databases/LocalCampaignsSQLTracker.db
Filesize
24KB

MD5
78dfb71ae220ffa608f09caa1a85920f

SHA1
cb55f39d84d78d4426837c25944ad9d114d0fe4e

SHA256
831c5da06e12d1e9cf69797541d0f0b81f5a2cac69fb883e59c56630d83d1e59

SHA512
397721f0447e4853edd947c3a8b9f2762e8f192ead431c8aa391d499fab6f013a71c8277b40eb6388695b11111b49bef1bfbb1fd8a24b25a0cd19977e36b0c78

Download Submit
/data/user/0/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
512B

MD5
45cb4534cadb02d2edff9bef49941496

SHA1
08dadb1f3f1c466bd09913af1205c41687e92807

SHA256
10cfc3843dc598c0c8265e2ffec4b2c2f0e288af491d68b9b099d3ce98e4e0bf

SHA512
ae7345c9e9918c2cc89a56e138a20ecab4346f2bae5c2859a59a2c44ad4ed0531741d0b952ad9ff18f062bbcd568f97b87969214609000541f01ac3ba531b3a4

Download Submit
/data/user/0/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
8KB

MD5
124fefc6cf0a95677b9f8a247de5cac4

SHA1
624964da36d233bbf5579a5d8196577c677585f2

SHA256
29aab4f634bd2cbb1da397c5b30d9cb4bee774a5ce21a7fb31a038def9f9d4ca

SHA512
6eb7f1f47afa6c5528b5a37c5008722b205d687461c903fcebb6dad7c9623f3690f78f26c5af3ed201b4831305e688c637a2e7fb6cc6cb82549ed384734fb659

Download Submit
/data/user/0/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
8KB

MD5
9b9d5650b22604cce8f283818e10019a

SHA1
a84f9648c11eb9051f4b9abca8046649c5287d08

SHA256
f99ef3f5cd8baa21eda43eec88d22547d0625d187ca0e1c5ca06446d44e48f7a

SHA512
373a12b7874b42016cb96fbd3ad68544e2e0d235771985efe415164e8b1655121c8b356581bdafcf1c502986fec9affd9e3a06afb91846bffc7c7312ae0486af

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db
Filesize
20KB

MD5
c920a07b750a60a7f0c9a3d123c9a670

SHA1
906b175ff00852667299321dc770d1a25c4a03a7

SHA256
f38d18b51f7dd05b6438a00957b548b1ed812e0d1b1455286847f5c0acd9bae1

SHA512
b9e74949a5181d1df4f5080b04e78feb73bd48db5a9562eaac768a631adc457ce360833c1a73abfa9f3fd1cff0c1fd719920de9b102094cea975a49be5a9aae4

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
512B

MD5
6f2e2482292de58aeed6a0ba34f82e61

SHA1
20fb1f996dcd92b75389107f7057d10a057df726

SHA256
546a33c08a3c5af8d642865c390a149255974b582b229e273ed8eca0327c93a5

SHA512
880c00c29d62bd23460594b958bf910bd794546c75f28fcd8d19af78a6bb484e3477e377323a75d60a1a8c3a27aeecbcf8c9388fd784275d0ae2ca63721ef1e6

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
58c018a87d6b063a42401761ba4d3820

SHA1
89d2178bbb259189386cf1ce5ec0800fe26aada6

SHA256
d4e8440853e9ad85047f9e4d7c7937955ae7b91a97526e8cc70bb172863e39a4

SHA512
287e6153aa7466bf0d6be691589cfc86eb377e7ed8ca839bf857b17f2edb3c912c874ee747692787b90e96557331502d24fcf042d3c623684267eb4535e5f56c

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
f3ea5dc15e5b1761ea20ecbef4f1b6be

SHA1
8905166a271844c0f4d38a71882443c19110e0bd

SHA256
238faf8cd56065ff4096ce86c8603ed2bf7fc19b01dec9e55b5d946920da9066

SHA512
ddbffd0199a86b9fed6d63f5ebef3625eeaef8e40685c45056b94005926e36a2b971c384ecd0137251fdadc1df2cb603d6ce4c3e2f69b87c103fe85299b0c359

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
12KB

MD5
1a53833725d10fcb649fe47280eacac7

SHA1
376a46efc197a2a3bb5c66230db759cfd89d0b74

SHA256
d1b10c75758fc0feef85559b93ee3b3c73cebd78faf00826f73bc32db072d46d

SHA512
4617220bf1d46c4afe7b7e01db02ad3397ef8a26a4ad46fa71cf33ef706fe826b3ee6fc4ea6613092e8cf9d093ba24094410e5821edb52351eab08a063abbfde

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
6513b6bd898e2b6417fcca1d9d491b44

SHA1
58e454448529d0e8c4af8705dec27453f0ec1796

SHA256
cb90aae426081e9fb17b415e44181efaddeb3994df996cbb2c4281189f7e8e43

SHA512
79285af66f0e7c7ea4b1d157afdc125790e1ce95aab3935e0a9b919a10abae06b1b3359aabd1ad5c0d7fc63c53e3a450356c2b6f7323cc36654b087b90140ac7

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
5a47f22a68133ea822351ce4c92b1437

SHA1
6fbde3ba4ea82989e1ceba7f4b2972673036d584

SHA256
225cfba11e166ec21e5c726db8039dc0864d8d31999b91738475f0c8fe701c84

SHA512
ee223d9d28b8dcfdf81635b8b099791f295b7bbced98d9243dd8866a4cf4c891649174b73084a31437219b7920d4c2ff81e85592ea004634caed030329df6a4b

Download Submit
/data/user/0/service.api.insta/databases/i_user_accounts
Filesize
20KB

MD5
09a6926c399a760f83b0de3e7e0da5d5

SHA1
9f05d0887829fdbad70daf7dc4d3324111be8060

SHA256
baa824a3c9c829d19a4d89fe0daac534a97f0a7eebf6ca15d9e12a24b0228e60

SHA512
d9b26a548c91e0cb3e54d997bccb7a01ad951231783dba79b10bf5a9e14c05efd6e29afd3006ec17dee93d69ed7cb6394da9ff96c099f475ff72467190d60bf7

Download Submit
/data/user/0/service.api.insta/databases/i_user_accounts-journal
Filesize
8KB

MD5
f853c98b2b7e7da7cc4fc5fe87a595cb

SHA1
1116cf99811e74db5f10183ef46de05a80731dd3

SHA256
fcbe56dce821f32e7f99b62ce4f6fc14fde4881c57b31673cf6a6abf8c274155

SHA512
3773cddc8dfa346cbf6e315139cd766fc681a08f562da0e8dcb4e81aeeb189732c09945b61ca15c2e5f600710b9dc554635bf940270607a65e470309ef2157f6

Download Submit
/data/user/0/service.api.insta/databases/i_user_accounts-journal
Filesize
8KB

MD5
b60cb68408f0e3392b6db12047b22546

SHA1
2edb854f5e3d8853fdfcc0a45283fb49b3c8d979

SHA256
cecd7f658397af9a066e44186ace4458f420222005b4feb716f8389ad424fd19

SHA512
4c55babec0fe9dbb9b4bf870fb2017199d17bc6cc0c5338da74d94f5c59df68ce5dd621b8a37f69b3072094c9f95a014cc74e112c1db2de6072552b37185da63

Download Submit
/data/user/0/service.api.insta/databases/i_user_accounts-journal
Filesize
512B

MD5
d4e6173591bcddb6f060b3f43afa1a9d

SHA1
ee3253ea2aceacc9996d042f331ad18b43a39b1b

SHA256
01a1e5e96e34216a0aa25076a8cff6690dbe6d68db20eba404ecc628d387221f

SHA512
383f8259d6e07826920161cbc89468b6a246ef73a7bfae2841fc68ece0b118f6fa7be19b2eeb529dd8f9853dc240051ff24d4ab36d20c5388bce888512b90e2a

Download Submit