ec7fbaa588e99bad5fe02d9b813036a57aeb9069e2bfe9611ed9646485702e13

Analysis

max time kernel
10s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
22-05-2024 12:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

FollowBegir04.apk
Size

3.8MB
MD5

062c020e9d19c430d004b7237356a818
SHA1

7e299d6c687490f2bd0bf551dc73f4e6f6785b4b
SHA256

ec7fbaa588e99bad5fe02d9b813036a57aeb9069e2bfe9611ed9646485702e13
SHA512

e99a55a908bb263276512a68b86eefa7c223e7c12898d328fce7a35939935d25208afb7084bb4f432a939f191e9dfa4c8359a1ddbacfdeaf66eb7fffcd89033d
SSDEEP

98304:kS3BetIPdVQG1B+MWBvylmoTIPD0J/Bml5yG:kSRs4V71BEND0dC

Score

6^/10

discovery impact

Malware Config

Signatures

Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

service.api.insta

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo service.api.insta
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

service.api.insta

description ioc process

Framework API call javax.crypto.Cipher.doFinal service.api.insta

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	service.api.insta

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	service.api.insta

service.api.insta
1⤵
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4501

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/service.api.insta/cache/com.batch.tmp.26510d1c-cb16-4c9d-90c7-c8539a32c05e.json
Filesize
77B

MD5
70afb5f5065c6e5ad84921c3fa84820e

SHA1
cc4125058067155b352f3ce3a25f5a4df4d8d33c

SHA256
ca108dd8b5fd3d9f7eb8275b2ae15a137a6547fd2ebb3b439d223eed1160eaca

SHA512
10761e724639cd0ed4a18ed870b7ec90c28ba2de87c744b9e361519d093e71166837b18d2b7a8ff150d1770383933a23a927323fcecde984b3c110e94b710e06

Download Submit
/data/user/0/service.api.insta/databases/LocalCampaignsSQLTracker.db
Filesize
24KB

MD5
78dfb71ae220ffa608f09caa1a85920f

SHA1
cb55f39d84d78d4426837c25944ad9d114d0fe4e

SHA256
831c5da06e12d1e9cf69797541d0f0b81f5a2cac69fb883e59c56630d83d1e59

SHA512
397721f0447e4853edd947c3a8b9f2762e8f192ead431c8aa391d499fab6f013a71c8277b40eb6388695b11111b49bef1bfbb1fd8a24b25a0cd19977e36b0c78

Download Submit
/data/user/0/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
512B

MD5
09eb2c9eb97c6406344eefcb00e8bb5a

SHA1
5a06268a1d95cacbf8c21f5c84db322001bcd282

SHA256
6bf262e78c82601f4803612d6dac344ab4fe34a64c067b29c8cc3f6f4937d9b2

SHA512
44c23c0337de9b67088b4162321c853c2b4839cd5b7417e56a157acf7aab1e4362a5a6d06b01a91a375eabc6a69a81a0754f5cf4052d0e2d2fac098465cee010

Download Submit
/data/user/0/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
8KB

MD5
0436d7105ce29c72bf4d51414ac5e462

SHA1
a5a42af2d4b283e9f3a0a3221bfc68488612853b

SHA256
2cfb7cdef7d1e7ab172fd3a1c2d341b38891d7e0e40a4d7724a3351245a14863

SHA512
abd4f95917dc9e20b0e9a2b69e92af139cb12976ec56ca193aa1bc1cd625ee666e51e08a7399019dc0e0f38a0f739d20fea8536762feed778985741779c022dd

Download Submit
/data/user/0/service.api.insta/databases/LocalCampaignsSQLTracker.db-journal
Filesize
8KB

MD5
19a4e14cdd5043240af5bdc86164a301

SHA1
c71d40c59614dab6e3e3cb63011b6e8d0c3a2056

SHA256
bed384024b5a54db4364e07c4060cd9b7830ebd4bb1be7aee4d504a467d9ed82

SHA512
d9b7ef08862a104c2358cef2aff4646ff2e3d1b7d1d04976887998c2b27afc5b4a43f55eb94e42bfd8d27326e8a463ce243c326c5864db7ca4ac26b3b9a00ea9

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db
Filesize
20KB

MD5
c920a07b750a60a7f0c9a3d123c9a670

SHA1
906b175ff00852667299321dc770d1a25c4a03a7

SHA256
f38d18b51f7dd05b6438a00957b548b1ed812e0d1b1455286847f5c0acd9bae1

SHA512
b9e74949a5181d1df4f5080b04e78feb73bd48db5a9562eaac768a631adc457ce360833c1a73abfa9f3fd1cff0c1fd719920de9b102094cea975a49be5a9aae4

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
512B

MD5
cb9bdd807ce2232c1f7438a3caacbdd6

SHA1
3b4edd81776191f768fb3704e61cbfa1a746767f

SHA256
213ac981c6028605984936e8405c9abf1d5cfc72b3ab6dd25194414688a72541

SHA512
67edf93f49173402eafd17578cf00bfccfcc2f01e836bb08f4dee58f9f529f411af359cfc4b581f2f4c8b6762b6bd91ce3fb0eb1d7912201da4455df15433d48

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
27a708f76fcae141fead41319d59e6c9

SHA1
8b23a867000a3359dd50aa5666fabc7714bc6246

SHA256
25af7a0bdc58adcdaf742e06c645363991605d36ab48193d28dfcd2b80866b6e

SHA512
926d78c8168984966d4bc881e0153998bbb5b0d82791f7a39eff6389f1dc01494693744b66af74327c38c1803733c6ecef880c9d972ed280ac1a1f47f01f78f8

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
b11efe2051c308779f8e58fc1c5c433b

SHA1
579f1d5b0ef60e1573236f006b598c8da2f737be

SHA256
b2aece883d89dbe5fa4adf0a3fc5155ce4536d7692fcebcf6567dc88faa87f7e

SHA512
4b507822b6e67177d65b3a6d5be9ca87ebf0f8d07163bee38428dabd8e5f6bce67f46e5a21c4ee339a943bf2d90e85bacb6e985b611dd7f8008916c0b0f03a8b

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
12KB

MD5
05c0d5ba6247b0b37d0a00d4b53d1768

SHA1
7d82e9b6776a678883f4f20998ea73b5fb71d6aa

SHA256
a04ee69e085ed391d40f0eca30c1b7090f30821a259490bbe3fd4874467092e0

SHA512
c353438185df2658d14df54be4da9830a54e25626a7f8c5e275b01c30ef011c9a48a6f608be70db17f38e7f490f4076aab9c15183d3dd7f19c54e227b9395826

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
8ca27778029a32162e089d82803a5fee

SHA1
1ddf817b4daa2c52311800a84115d4ed8e8d1cab

SHA256
79274a27a1c81de2a49a6ace02f092d74edef7360cf3b9be6777c20648205048

SHA512
553c3f1cdc0b342cfa360be759197199508a225be69d039974a207a664f9ea2785bfa48b628427f7f0bdbdfe3404a58b5cc6d95a67cb5cdf955d90c8ab02edcb

Download Submit
/data/user/0/service.api.insta/databases/ba_tr.db-journal
Filesize
8KB

MD5
2eb583e380939a09b2464c564bfabfe7

SHA1
9e0188ee0b40c24ddd80d9d45437a751f8d94321

SHA256
403c33a2c987a3b165c1c089b688f8d64df44ce491eff2f7e64308fef2446359

SHA512
17df664104734ae9700a7c0ab5c3471ca46747f9211241e7a0338aa55fbf3a692046d4238feed449189016f028b9a1653183119bc48b7b86741d5ce0c45f7186

Download Submit
/data/user/0/service.api.insta/databases/i_user_accounts
Filesize
20KB

MD5
09a6926c399a760f83b0de3e7e0da5d5

SHA1
9f05d0887829fdbad70daf7dc4d3324111be8060

SHA256
baa824a3c9c829d19a4d89fe0daac534a97f0a7eebf6ca15d9e12a24b0228e60

SHA512
d9b26a548c91e0cb3e54d997bccb7a01ad951231783dba79b10bf5a9e14c05efd6e29afd3006ec17dee93d69ed7cb6394da9ff96c099f475ff72467190d60bf7

Download Submit
/data/user/0/service.api.insta/databases/i_user_accounts-journal
Filesize
8KB

MD5
09b2e5e386f918c4bbfc2210ecf1271a

SHA1
6ab1cd9be7463eddf84d39d576ed35d503d98afc

SHA256
b96160ac07354f70e12039097d8fe20ad241fb3c436b0d9151d20ba1c55a3fb4

SHA512
4eb3a267e25378d9bc79bbcca6083b43ffdbcd709f207148c9b193c6696d67e47eb302e497b3f659fac8f591a6da2d00b7175ce0b6c9e18c78c66cc59a353400

Download Submit
/data/user/0/service.api.insta/databases/i_user_accounts-journal
Filesize
8KB

MD5
339035546a9f55a8c6281ec1a958dc3a

SHA1
114196c2e591fb12d8478bfa4c5da173d72336a8

SHA256
0838631a7a7caabe001be2930af7689a3b14458829903a7f1377bc44966815ce

SHA512
06eadf4f1952ec3eed8ae3d31135b21e035512aadda83c2885643bb16af2eff5297a3d292dc07f4381e57bb42100463a29a39a8974ff97d478435457786b622f

Download Submit
/data/user/0/service.api.insta/databases/i_user_accounts-journal
Filesize
512B

MD5
ad570d727f6f9cbd08b1a2951b68a405

SHA1
a34371036d8e1d3663614b9a404dffe417f803cf

SHA256
596eefb5eee6761cdff4d5a5376b5dac6c13d75ad977d1236ba4ac19c63b1e59

SHA512
a3397e44528319b2f73f7409f46879aa73d5db1170b038404470f23be3337a3e0ee17ed44c15f1aa7f0135cf1d20a4a3d0ea38e04a7287175835443fcc3e3580

Download Submit