9b1d0060f0f5b0cb26eb90a50ef3208ea75d137ad1a8aac87e70d354d1dd26e5

Analysis

max time kernel
11s
max time network
131s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
22-05-2024 12:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

FollowBegir02.apk
Size

3.8MB
MD5

5104526aa8ea72e6b87bacce18cd680f
SHA1

8f10eee41f1fd2197974ca4738113b2412209dcc
SHA256

9b1d0060f0f5b0cb26eb90a50ef3208ea75d137ad1a8aac87e70d354d1dd26e5
SHA512

0098c514df9c3c9e0eb78a40cc2649423e3fe3a15252226355e87d8f81c57fb5abda818d3575d425b282f865155a739f440b2fc47ad361e59c4411b899153a3e
SSDEEP

98304:Jc3BLTJTo1JrbecEqENn/R3J2UBTIPD0J/Bml5yJ:JcRLybebBpJ9UD0dt

Score

6^/10

discovery impact

Malware Config

Signatures

Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

service.api.insta

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo service.api.insta
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

service.api.insta

description ioc process

Framework API call javax.crypto.Cipher.doFinal service.api.insta

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	service.api.insta

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	service.api.insta

service.api.insta
1⤵
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:5228

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/service.api.insta/cache/com.batch.tmp.ce1627e1-ac89-4c7f-b060-0857cdf17db4.json
Filesize
77B

MD5
4ef3b3a67266f1ceff5a6754691ffe25

SHA1
6bea8869490749be4b89373a3bf0e639943db41d

SHA256
70679688ce8237b7bdf6d67295e3e85b77966978d59a5a013657e22778b8b597

SHA512
ef93bd15cd1da70c95b3df74d3bd2f9e80b61885467d756ab0bb0cc918d579b0b12b83d4adf2bc9606f09b0f42da11dee12d016cd7c044093bd0fa17fc167f6f

Download Submit
/data/data/service.api.insta/databases/LocalCampaignsSQLTracker.db
Filesize
24KB

MD5
95346fb82e6be798f281a46e5cd57569

SHA1
bc67567b8885c9db80a314b62889af93602d0b99

SHA256
3da54573c88adde33812ec6976f251ab135d6b8f629ae444aad5ec96fc916608

SHA512
f97226e5241815e3cb3322edd030c96e2f400f8b0460fc2ca836a384164a3934eb289e24455aa51b1e6c8ef2efa15c6a696d1eeac4e71bf7ff9760765592e6d2

Download Submit
/data/data/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
512B

MD5
515cf525f34c76ea21ab7b7729d1c773

SHA1
6f941bccb56ede4bfef319a11ed05556348605f9

SHA256
f44af9fe618489c65eb28803d43c87ba154de289c35322f2bc4912f1cf78558d

SHA512
cb3a669f66cc657c4934874b5df0a086867d1f09262e9c824429b7e566c21c8bd6a553a9ec62927cd411a792704e72449063766624b4c1637f74b7e309529fe4

Download Submit
/data/data/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
8KB

MD5
ea76524308ea3b598973da4626dc71ba

SHA1
9481019864f1179cf96854b9b3b4fd157107e179

SHA256
83da454a47fc1ef0b7901ad3623dbe58d0e6f72c8d16d24df2b1cc62c8de4136

SHA512
238a1e9fbf739214099a0d7c1a87ede54b7aabdf23112f25600b48aebe9be21a92be129cf766728a7d3dc967ca0572e8e8c82cb2faeded86e0df53458829047f

Download Submit
/data/data/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
8KB

MD5
b2f2314a92a3633ae37bff2208d0faf8

SHA1
950d44e611dbb175b958be2aefdf6ec3107b4bb7

SHA256
8f8e5c50497648d84c93f911bc18105c8ef00cb7b1345127e2a12ba66459bfb9

SHA512
b4a75399cb14c792fbc0e1a3f5fab3fe8d527480c717753ee924a6c9090c1efeff0438be6914c8370aac9bac25ca6af9134978109c017a00bfb3d928cf0dccb2

Download Submit
/data/data/service.api.insta/databases/ba_tr.db
Filesize
20KB

MD5
9b07c7a4fea48ec3fb019bbc950cd718

SHA1
524d3b37588f066bbfdea765cef37b17c9e1fb7a

SHA256
39e5b44de4ee92c6d760a9a2044d06c1e2be04d4ae44a6196a61ba415ae605b3

SHA512
7062f434a6c24bb817c3310099bc1c255af9c7d5b99819656da95bddc91aca8820d4bab84b1313e9f1688c5a7a96fde1cd134ee6a695e954c9da8875148dad36

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
512B

MD5
8df928640598bb31214046e886869809

SHA1
077979f51bbde6a658d83e1b7ccfac5c6e648939

SHA256
1a5b6c840513028c423b2b6fa1d5c626eedf001ee61dc12f4732f7d500b0d8d0

SHA512
bccd3cf303d15ae1ab7e652fdd59de5b8516bc44064336b542b88b761de9dc928c12fb2de0b1abb71e4124b9dca6c44919b1ae0b409f41c4632127d991e535e2

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
76b5acb4f3a2607f866284c7ee20fdfb

SHA1
0d718afedba9e1618aa3c64704a00ccae644d882

SHA256
1e998d131e049702f918037b29d30a38ae55d5d4c16fea249ca7b47ace059f24

SHA512
b8e1a8cd489ba7857d9952f062e8ce0bbb059b88e297afc1661f1ac6955316658ffa19cccc3a699851da4831fc335f9fc9bf1b03c77d49e839ce15ad663ba7c0

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
222a9304ae9a944bd1fbd6dc45d10850

SHA1
061e31a8dc114dc0a18d1fa00518f8c898dc1a91

SHA256
739c1abb3f0d484460a2f4bc11945e43d5206ca57c123329cf06fafcd0bf6b47

SHA512
c4bf4a1b6bd2aa3813cfc25e73304510a691b06eb543cd15af9beb472a4e4a46780074f9fcb0d9405c70cfb9f1a499aa22a3dba559662363d8764b5cdbd57a80

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
12KB

MD5
2bedb100cf8b03a08c23496520f128af

SHA1
0b45c0056101e7773204cc83f21d5b658c76e426

SHA256
29bc9c4e6220dc98e67ce74957ff39c4c4a6a85fa9c740aae3c0878d2aed99f1

SHA512
5ccdab769462265572276fe81978d8b73a0458665194a2da4f6b81cfbc88e4a4b228fc9f499f3708bf969bef8a11f6ddd71411639ebbaa56345cbd6a953c7f58

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
2a257616baffc9ad354a6a2996ba6374

SHA1
5926a6148347c46d1f18412c74f61f0108938624

SHA256
2bd2429745b647df6dc809a796ef12f183835b8525fa61a0cc8c3bc4cb0f3b8e

SHA512
4730ab922c980f76577862305e4cf90ade59b243846ed173787f92d385bb5124e63e612fb3774f6636aec2a521d59ecd602c0b02d99d49d827f29da0a334e076

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
c3b79c74c27894414da3dbb416de87d2

SHA1
82e528e07a13da0ec08f10cf1589a60bba965b40

SHA256
7a05ba2d1a73acecca122f536732b896a98642e3f73e9437844ec352c6740296

SHA512
3624fc49f163787cd55b67e4e64436a25899666d2cb8d3ec2af57f24e86b79430d31ba825c59afcb858878deadf42f7b3ef93c1f6ed53e0a34be13aa0e3913bc

Download Submit
/data/data/service.api.insta/databases/i_user_accounts
Filesize
20KB

MD5
f9234d2c848f360b63b50c9fa4e0735c

SHA1
90967fb01b1f5ede8c5883e10a05406b8a726a7b

SHA256
d70c6509d85d476dec1ab86dbb2005598a7ac090b6653b326e97e5575a7de584

SHA512
b6223be243fb30815e2aafe683127cd63299a3f6377b3997b5b66cf3f6b376750ec6038a2767693f2ad8649ecf7cc569a0613acf8507a1e62500542f70353732

Download Submit
/data/data/service.api.insta/databases/i_user_accounts-journal
Filesize
8KB

MD5
9a9fffbdb378c7c4d64fe84d59506ae2

SHA1
296b9896819aa313867f66b7d2317ea44571f881

SHA256
9686cde4b01970b96f91f4c7655f819fb0adb56b0ed84b0dbf0a44e07e807fd2

SHA512
1fb1ae5a1963be34a62c62f05b3c4302d3c714c42dcce6d25a8aedc95aa42012059c9d55298c14eb64f05593532cacd49205f8096a24609a01bfe19c479ccb2c

Download Submit
/data/data/service.api.insta/databases/i_user_accounts-journal
Filesize
8KB

MD5
18f0c28f79d396c69922ed955e4cc313

SHA1
26b0760d173c287f4502e890262953796bc05598

SHA256
e5bbe86a81580a1e8455355862f2727d9adab29f12c240a82306040c82a61ba9

SHA512
9dad3d54bd5417fa508851767e12a950113a6d73c09b9839001a4b97ec8e121ca8c16aa1fe5e5285006339c0479dba607bfe4c483e2f8b630db37835b0009a37

Download Submit
/data/data/service.api.insta/databases/i_user_accounts-journal
Filesize
512B

MD5
8897cde75e3c46eae3c28810c720ff20

SHA1
00bd40e5c2565ffddaf9749491e037dc65d501ce

SHA256
19a3982c3a4b4bcbd33546398120784e8ecd90c0ff2063aa0874e8cdbe18b901

SHA512
3c3ad2afba660b83ab6189503a71fe397673637dc6ddcb3082bad492342b5d73d523059dd3557f4b54596cf5fdf48e4b021cf9077c95cdfda27a576323f2cc3a

Download Submit