ec7fbaa588e99bad5fe02d9b813036a57aeb9069e2bfe9611ed9646485702e13

Analysis

max time kernel
48s
max time network
149s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
22-05-2024 12:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

FollowBegir04.apk
Size

3.8MB
MD5

062c020e9d19c430d004b7237356a818
SHA1

7e299d6c687490f2bd0bf551dc73f4e6f6785b4b
SHA256

ec7fbaa588e99bad5fe02d9b813036a57aeb9069e2bfe9611ed9646485702e13
SHA512

e99a55a908bb263276512a68b86eefa7c223e7c12898d328fce7a35939935d25208afb7084bb4f432a939f191e9dfa4c8359a1ddbacfdeaf66eb7fffcd89033d
SSDEEP

98304:kS3BetIPdVQG1B+MWBvylmoTIPD0J/Bml5yG:kSRs4V71BEND0dC

Score

6^/10

discovery impact

Malware Config

Signatures

Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

service.api.insta

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo service.api.insta
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

service.api.insta

description ioc process

Framework API call javax.crypto.Cipher.doFinal service.api.insta

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	service.api.insta

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	service.api.insta

service.api.insta
1⤵
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:5158

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/service.api.insta/cache/com.batch.tmp.cda15101-4866-4a40-b4e7-8c95c09f2395.json
Filesize
77B

MD5
03b2b2b4c7de1c2e58fad46779bd02a2

SHA1
9ff0491ee5c57fc6b4d498a1980a39d64c7ab0fd

SHA256
b34a35c3badee1cbeb63bc492967dc1e79b9645c098075d1dc4e0c0bce01dd63

SHA512
475a71d61c0fe2574f0790dc0665a7db8674490e1e863f183e14dd71332e3ba1c6a2c43085373816d2ccf16f1adc685397d5996a63c607c15b8d698d1d4ee17b

Download Submit
/data/data/service.api.insta/databases/LocalCampaignsSQLTracker.db
Filesize
24KB

MD5
95346fb82e6be798f281a46e5cd57569

SHA1
bc67567b8885c9db80a314b62889af93602d0b99

SHA256
3da54573c88adde33812ec6976f251ab135d6b8f629ae444aad5ec96fc916608

SHA512
f97226e5241815e3cb3322edd030c96e2f400f8b0460fc2ca836a384164a3934eb289e24455aa51b1e6c8ef2efa15c6a696d1eeac4e71bf7ff9760765592e6d2

Download Submit
/data/data/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
512B

MD5
2780e7db30d0cc92b8df10f192b2c0e3

SHA1
cd5c504fe298e8c3ed9476b795fd5c861736b576

SHA256
8fef5de21b7ab2001ad30a3a03da3a5c4e2e58fb4cffaac2eadeb6e246de823b

SHA512
a20ee1d4020e3919f24d62b491ca4a44d64f93cc87f3a6e5f4144e1c8938b55b2823c6cbb604dbffef8c0c69b73e85e6f98ed0db161a50de2cc055bad44e8594

Download Submit
/data/data/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
8KB

MD5
b317884edcbdffa6386101fb2d4c3fd3

SHA1
be2ad396e0094ed1cdc752ae77fef8b3e02d1dfc

SHA256
d605d2c453ced1e413208631417841ec16066db656b5ce9d621fa4446b187ad1

SHA512
cbe28629f199fc3a680046afe9977ea89c66e04c9d202d2fed0a2fb56f6a5beded63611d043b3ac89632f1f758daafec2588b71d95ef0801f3208a1b3fe066c7

Download Submit
/data/data/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
8KB

MD5
0db64185d97fa7e6fb13045ed4222a07

SHA1
2fccfb54d63152cb7b6c5b8677435c724c98af7e

SHA256
49cc1f181794c8dbef003ce2fe22da63b1ccdb26b6982ebfdd9a63100ba909ee

SHA512
eb6c26a9632d812eedf99a712398f268efe3cb9e92f365c04096e2bf16e018b3ec93d7485b2b11ecd0ffdcdc2ab1937735b90daf739d84bddd158c85e75d1e0c

Download Submit
/data/data/service.api.insta/databases/ba_tr.db
Filesize
20KB

MD5
9b07c7a4fea48ec3fb019bbc950cd718

SHA1
524d3b37588f066bbfdea765cef37b17c9e1fb7a

SHA256
39e5b44de4ee92c6d760a9a2044d06c1e2be04d4ae44a6196a61ba415ae605b3

SHA512
7062f434a6c24bb817c3310099bc1c255af9c7d5b99819656da95bddc91aca8820d4bab84b1313e9f1688c5a7a96fde1cd134ee6a695e954c9da8875148dad36

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
512B

MD5
23ced41675e785aa5ab2eddd6fddeff4

SHA1
0ba6e9d73f4c3b870133ed81bb1c751ed6b721ee

SHA256
157107008932495eeca34a251b8a5f3f1c8b2ba21ab911ff1083279d6d9946cc

SHA512
330b6c88d27ea24e4bb0452ea3f130fdef73b862e399895a3b95101d2ec281c9ee56e03cca42f7fe3c48a8a91bb7b32ef6dfe27564ff4786251248b034f5802c

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
fd0a8ac600c6352f329dac1e8586e0af

SHA1
f8ef4178fff6eebd16a41d3ff654c3f30e89f879

SHA256
8b13211398d75979e4b4c40acaa8da61e09348ffb41b4720092bc0283ddab08e

SHA512
adeece7e3f8751b8c8ff3ee1949d1a1b4fcd0553c6f854341399e55afefd012752bd599a1d7c4f930de254b387ba4665b40ef4d5dfce9e494910cfaf274a8f98

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
c133b81fd0d8f4bb5678a87c5c255a0a

SHA1
b2c2a93f64fbd4cb8227b0d673a2ecfa677c7132

SHA256
a7d8ed40d863c93f1f0f556a8a9cb36a64e795606c1391407a2a82461fbec2eb

SHA512
b1e027e5ecbebe21e8bf743589b4f66c6ccecbae7c6dec6f6084f6c768a4613446dab9ee4745fe3a663ba350f1b42e4c79b176e0d305bb5669ebc6d973f8b68c

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
12KB

MD5
66a3e7dffa06601aa75fc0e45c12f0a3

SHA1
76144b67a17ce0868c221541ac97a31a3ae9c232

SHA256
198239977a4528c16cc6b092d1893c297dcc967be500797566c2568d904d5b76

SHA512
c72c8398c3ea5a95ee8215b39cb35b4e350ae2359a0fcf55869f2cf80410f8ed11470e6117c10205cdf4bd1d10d3e91802adf8e8007fb9cb7db15e3a6162c9da

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
69e7804e4f4429794e9504059d5be4a3

SHA1
357e3d6293a25085cf0122cafe3f9ac4ffb8f745

SHA256
5eee9bf91ad4a893f4d9ea1566eefe10bec8d2a69e1d90852f5ee980ddf0c9b0

SHA512
8f09fa05a0742ba852f55a8605859781ad6a92c53fb3067cb9e6738461dbdc08070c44e78541aaaece3acc36ad7eea7b447465cac86b1b96b27bc17bede46a0d

Download Submit
/data/data/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
9a504957e74a6bd9e126ebf0fa9be601

SHA1
1a92f1230d11e3175a7f85d99920d770d5c4b951

SHA256
1efbc5d84641154d938bed73381538a127ccda9610eca3345d8dae668d99fbb2

SHA512
f9b48d688da0a6664b42fc7f09698303f1897fbd6c52774d80cd621ebfe6dc66069e94f59800b699cc2f167bd6978d4b1f5782afbbbeab018ad54f2653326490

Download Submit
/data/data/service.api.insta/databases/i_user_accounts
Filesize
20KB

MD5
f9234d2c848f360b63b50c9fa4e0735c

SHA1
90967fb01b1f5ede8c5883e10a05406b8a726a7b

SHA256
d70c6509d85d476dec1ab86dbb2005598a7ac090b6653b326e97e5575a7de584

SHA512
b6223be243fb30815e2aafe683127cd63299a3f6377b3997b5b66cf3f6b376750ec6038a2767693f2ad8649ecf7cc569a0613acf8507a1e62500542f70353732

Download Submit
/data/data/service.api.insta/databases/i_user_accounts-journal
Filesize
8KB

MD5
81a7249cda8282239c23235aecb2bfd1

SHA1
77fda17c80bf09f9411bb56405e5bb51c8860e23

SHA256
acda21365ec246de35393b4ce8d61c980c4db2966dd07204e3a59044368950da

SHA512
8b08c0037f99830d7e5249683fc9e0620c3b428d84442d74149421c7895c3ed85be26ae268212b95c7e78fb8a433c91c94cc91332d6d89d5872812271770620f

Download Submit
/data/data/service.api.insta/databases/i_user_accounts-journal
Filesize
8KB

MD5
8b518870ec1ec64a586ad8d78a6d3f1c

SHA1
a1bb3ec0de2aefcc2122e813ec5b5fbc9585f980

SHA256
7adf643212f05c7be89b8428f0a94b6876eba7396100f38d6b57127294159506

SHA512
84bdb7aa6977e0ae462e168e1331ccd4455e00a810107e40806a65c478ea5a978acbdba7950a531664ed2f26be37052d0d0079e2b559cc82a252ccf22d2e39b5

Download Submit
/data/data/service.api.insta/databases/i_user_accounts-journal
Filesize
512B

MD5
80d98d9f77a6617bda97ca5a4c1c0314

SHA1
a7b209c9eae82e5f639274c1165be0a015ed53ee

SHA256
6ae1d48f49adda85f35a6d0eecb6acc6549f13c2b8336e1bd9efdc3af67d6b20

SHA512
dc5931b629938c69ddb59259a9b72dc23ad10e2e895fe4e0fd8a52cb16df6000c5b2749f91b4cbe585d65ad92f6b20430bd8d699df3ae2ed729e6345e1c03a80

Download Submit