Malware Analysis Report

2025-01-19 08:07

Sample ID 240605-se7qfsac81
Target 9875f723ffcc97f2d077bff8a00603bd_JaffaCakes118
SHA256 62e9dc9326292c64a9a2abbefcac45bfcae2ecd084a58e232cc94ce0faa07933
Tags
discovery evasion execution impact persistence
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

62e9dc9326292c64a9a2abbefcac45bfcae2ecd084a58e232cc94ce0faa07933

Threat Level: Likely malicious

The file 9875f723ffcc97f2d077bff8a00603bd_JaffaCakes118 was found to be: Likely malicious.

Malicious Activity Summary

discovery evasion execution impact persistence

Checks if the Android device is rooted.

Queries information about running processes on the device

Reads information about phone network operator.

Requests dangerous framework permissions

Queries information about active data network

Queries information about the current Wi-Fi connection

Queries the unique device ID (IMEI, MEID, IMSI)

Registers a broadcast receiver at runtime (usually for listening for system events)

Schedules tasks to execute at a specified time

Uses Crypto APIs (Might try to encrypt user data)

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-05 15:03

Signatures

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE N/A N/A
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-05 15:03

Reported

2024-06-05 15:06

Platform

android-x86-arm-20240603-en

Max time kernel

178s

Max time network

131s

Command Line

ua.FoodSoul.DonetskSushiTaun

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /system/app/Superuser.apk N/A N/A
N/A /sbin/su N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Queries the unique device ID (IMEI, MEID, IMSI)

discovery

Reads information about phone network operator.

discovery

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Schedules tasks to execute at a specified time

execution persistence
Description Indicator Process Target
Framework service call android.app.job.IJobScheduler.schedule N/A N/A
Framework service call android.app.job.IJobScheduler.schedule N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

ua.FoodSoul.DonetskSushiTaun

ua.FoodSoul.DonetskSushiTaun:Metrica

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 api.birbira.xyz udp
US 104.21.17.160:443 api.birbira.xyz tcp
US 1.1.1.1:53 startup.mobile.yandex.net udp
RU 213.180.204.244:443 startup.mobile.yandex.net tcp
US 1.1.1.1:53 api.tridrongo.info udp
US 172.67.161.129:443 api.tridrongo.info tcp
US 1.1.1.1:53 api.oradaph.pw udp
US 172.67.140.65:443 api.oradaph.pw tcp
US 1.1.1.1:53 report.appmetrica.yandex.net udp
RU 213.180.193.226:443 report.appmetrica.yandex.net tcp
RU 213.180.193.226:443 report.appmetrica.yandex.net tcp
US 1.1.1.1:53 arb.grattomania.space udp
GB 142.250.200.46:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.179.238:443 android.apis.google.com tcp

Files

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-journal

MD5 0941ccd278e4a25a11f01b8f73e59bfc
SHA1 9d46336b175b081722695f8c0257c9bfa76329d6
SHA256 d8e36098bc76adb5d6c8d06885a94117a43979ace839f973d7fcfd8e1edc71d8
SHA512 e0006a9a8794e315f7f5c2f43dd127fc145ef867615cfe0c48d66cee908e975a5a50274879916aaebbb803161c7c8bf68a4b305785a916d4523b16c5714db7c2

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db

MD5 87c3822f19d9b52075dca44fb5d64a9b
SHA1 fb784878f9ea2b0e8fc801a391c53b779b284c58
SHA256 73cd97b90d4af7775a3f2ee0e106d7b866d41e60834fb7b5d7285f1e91f42e00
SHA512 d6b603993529ff6048485f29314457ce450945538baf03edca74682ab61dab9e8e693dcb1027fbd9ad5b9dc8492a9a921711cf6b588aadb10e339323cbf6a859

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-wal

MD5 d7cbec647b73bdeab13bd43ce910f28f
SHA1 4f223622d525312d4dc149efcbe593ab1c035585
SHA256 c0c020bf6901ef1db2568c9ccc8dc3fcccc983d00d9e451ebef09345ace47e4b
SHA512 479c22bab0ae6c64e776665b7ee12ab6a6a661ae3c90eb23e3f079af064dec4373498ac66a87a01212968dd8295c6678058e82c9b9343ccd29ca3574eb19ad46

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-wal

MD5 86a21053e8a5d6dfdd2f59cdc5e24f66
SHA1 a2595ce2576e44d07f5809fc59efdb0d721f0392
SHA256 1375049c10e1d64c4ad0b41e5f4aba5a9d0627a5dceea3764d3a6a89dd08eabf
SHA512 9bfbf2c66558137a89e3ac260061dd310fbbdfdcc7c245b7934a1b9d71fc1c293955220b0a8384933fc964358b3522df89a53bec2302f1060cf0894af3a8b882

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db

MD5 06956fcd61dde81412cb470eaaf15574
SHA1 d2c4ce7f735d5f7d834928e5e1b1e635d1edeed0
SHA256 3dbf28ea5983f0dc2d1f012b666219bf75e7e13ed73de897a9b68cf6bae2a20f
SHA512 8116faef3c3ddf6433dedc38420fe569e29a884cdbd7dec8bf454a22db41f9f5fd80b14a5c36a2357f9bc448024c77f619ab6f1a0b71fd2a195334b7d4726ba9

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-wal

MD5 b166ddecad1bf2fe9164ed7140802304
SHA1 f97ec65cfdfe3fb1b069f931ff1c0f0ab0bf491b
SHA256 1b6488683673fdd417b9a9b2b9fd1b9a834d8d66668f5937373030ab04c801ea
SHA512 0a5d7ccf639a54d0be16335ae4bec16b4dd49ee9340b0f5427cf774d3793257921fa16549278b0d809d64d145c29f0cf880e490bc2df8fb980d1d63aacdd2359

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db

MD5 6c5f9c6f5fd1364697504174451870a9
SHA1 ad8417a90511cacbc39ee223b5c214dc28bb4efb
SHA256 ad3a04ea19ad7df8ef7e95280dc76425a86621196d0d3f3e07524bea039fd01d
SHA512 07e5fe9009e5a257eb63f2ed65a003dc9f5735b96e31fbc6cb471b002a6c5a356a073eeb7384941e5a2dbd1f23beb17f21ff5b0b8dc122a69894d4e066e1eac2

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_data.db

MD5 2fa9b1a7ae5450fa4f08e52c459df940
SHA1 528f86e095494562c8101bd09f5fbe29e0a640ba
SHA256 75497424027b7b4005dd129c22859ce99ef2bb72078e6aac7c7e59b2090821a8
SHA512 5e633293dd6cc5f601c685b0ad4a5396e7cb387545b17957648c3710f00dbefce4a135fe864bdd1c1f7d54d987d6e02f71e564143f2ca264b4735d67b7a38c9c

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db

MD5 2cd521f1198ee000801dcb06f40c2793
SHA1 e4ce8ce7ee1c2fad800973ecba48b88c7199c1d0
SHA256 ec95aa6f251fd33494e15b076a546e18bfc3813b4c29f28d15deeb23c946b883
SHA512 ffaea94e1b0b97ae8ab4c82f5bd1168e9694e9fe49bf0946a389da1b91e8671a794613d4a9225e8c4370ef73683ac719f831d82de4b0615597b05a5ddbf3a34b

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 fde0d09cdd988493fc834ef804af34af
SHA1 f4ad68ad8174c659545a8b18540f3c653b99a5a5
SHA256 af32d711a007cb66f2ceec7f4a47a435880c14812c0bef8e5fcedfc15372dbb2
SHA512 0c44ee460afb4382ec00346dd44cbc9fbc7359afc9b22c711b1fb8f9ce9136bdda6ae1e46e2822603884eaec5c9c281bf86789ec2471caf2392a9459f75d7403

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun

MD5 d79be6f1dd22fcf14592ff15b49a242c
SHA1 803bccfda0e51d65e0ef8cb4dc7f67b048286338
SHA256 f8c9b3ef82d1c2612d44e5dc2a2839830872088507873aaab67138dd300c67a9
SHA512 f50839abe46765add6562a9a245d8c97f5a05aa62d51fc7c1a8f39e4641d8c0dab42d0bea98fcb4d0c613f07881b49041447ae5fe318408587cc7f9e759ac7dc

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-shm

MD5 162796fede5944ce4920b8de3e11ce21
SHA1 5c24ce1df9f63a7b735512157367fd4b30c1818e
SHA256 434da657be98b11c029ae9b0d79157ba19e0fb36318aec863e0afbefd399cc65
SHA512 16c99f0c24787cdd490ceb3602a5a5d558e12dda1b8b7954e75af99a4731d674e3e4ec3393971ef22c65f32eaa989964264e7dc27e96b8afbec698572b7198ee

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-wal

MD5 ac07789d239ce56973988fecc438c91c
SHA1 ddcff003c842018a8a74829fb283e6fbc321737f
SHA256 73856f4d9940560ded2ad0197bc0e15f631b68c7a0e62edd948e812c74930724
SHA512 bec3b2d0f29a61bae3f676e0b6826f226a4536fefb8c3d87d94197bfd59eab4a193503778a26b55e576140950a049c92971c57917a222bbbed77044a38ac2cfd

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 5d04b33fa75c3e5cfa57bf3bca59faf0
SHA1 1bf809a7b37292040f56e04bebb99cee4e091e7e
SHA256 f815a5a823e0d9be7c3552731a043deeb6ed1c849c96bca432bbb06dddf0f8af
SHA512 e0972120c94e2bd8b3d2f0ee2c051e66dd09641d51877b15660bf23b299fb26b3e230c73f2580276d2d52e18d83df44fefa0f4e5b9eb4cc89b2d79430199f9a1

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180

MD5 c77c1432be9f5cccc417ae61040dead5
SHA1 a1cdd90d0e2fb3617da8bb94e69f293eb2355b13
SHA256 06f13926c20ec3f43eeca803eb34bffb7910fb5b491aba4f371553738357a2ff
SHA512 1113230e59a89f7ba6e1a6221b4f36d43c8d3055eb7728706620085f9a3b77caecf9d8b6308631c9c7f7b25b09b25cda28c16860a3dad732e4576e5f256b72cc

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-wal

MD5 bdc8b50f2c6f7d03dfab631cb11b594f
SHA1 46ce80c65fe9e97666d9ba8f162ed069bf02317c
SHA256 e420df3fbd51bcc47cb68389d40bdd81fec108d236c77350c907345057233d0a
SHA512 87a25343d38b1f3772d085c94ff8c6b778b0afa4779b9fee71008f3053c14d89978fbccad8612673ae283d7a78f4cbe4520191e3949bc5120f944fbf0e213f2b

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/credentials.dat

MD5 a24a27fc9e465395a00cd613eee7fc90
SHA1 ca9c7023df556bbd1bf28d19c35efab9cb43a878
SHA256 e6dde08d33e3bf2d7e99f740afed528450922294f07442b0c8328ff14d52a473
SHA512 04c322d72f79e8d51f791c9582e33279f4e12d13a907c2b6d20b7a9766aa7ef88777071daa4a4084e76b93628a53c260f9cb10032a684e01a12a72b7bba88bc5

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-05 15:03

Reported

2024-06-05 15:06

Platform

android-x64-20240603-en

Max time kernel

179s

Max time network

150s

Command Line

ua.FoodSoul.DonetskSushiTaun

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /sbin/su N/A N/A
N/A /system/app/Superuser.apk N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Queries the unique device ID (IMEI, MEID, IMSI)

discovery

Reads information about phone network operator.

discovery

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Schedules tasks to execute at a specified time

execution persistence
Description Indicator Process Target
Framework service call android.app.job.IJobScheduler.schedule N/A N/A
Framework service call android.app.job.IJobScheduler.schedule N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

ua.FoodSoul.DonetskSushiTaun

ua.FoodSoul.DonetskSushiTaun:Metrica

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.180.8:443 ssl.google-analytics.com tcp
GB 142.250.187.234:443 tcp
US 1.1.1.1:53 api.birbira.xyz udp
US 172.67.177.167:443 api.birbira.xyz tcp
US 1.1.1.1:53 api.tridrongo.info udp
US 172.67.161.129:443 api.tridrongo.info tcp
US 1.1.1.1:53 api.oradaph.pw udp
US 104.21.8.212:443 api.oradaph.pw tcp
US 1.1.1.1:53 startup.mobile.yandex.net udp
RU 213.180.204.244:443 startup.mobile.yandex.net tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.180.14:443 android.apis.google.com tcp
US 1.1.1.1:53 report.appmetrica.yandex.net udp
RU 213.180.193.226:443 report.appmetrica.yandex.net tcp
RU 213.180.193.226:443 report.appmetrica.yandex.net tcp
US 1.1.1.1:53 arb.grattomania.space udp
GB 172.217.169.14:443 tcp
GB 142.250.187.226:443 tcp
GB 142.250.187.228:443 tcp
US 1.1.1.1:53 www.google.com udp
GB 216.58.213.4:443 www.google.com tcp
GB 142.250.200.14:443 tcp

Files

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-journal

MD5 dba9a7c827345aec166901945753d4ad
SHA1 d9475bbd1f4fc27b736e59a198f4ebcd8162581c
SHA256 44bdeed7943db645ef84ffa579fdf3c03d1a9fe1736f49ab67de5797b503e33d
SHA512 cfe2c05df0c5b34a605f9d0dc17c7355aa0a1a8ce870d107dbef706687723a882862296dbce2789729e2c91ffbd1e4044e03a048ea976cb611414f822404a78b

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db

MD5 481841e76734ae5a4723aa38fe93e5ab
SHA1 f10c6523ccb2cebee1820663a6ef07b6570d8961
SHA256 ef1b03f210ec71721d25072317962730fc500c634b72fe8add004f0ddbb71fb1
SHA512 27105d3f627c8e63ff1e60a623601342a236f616260110bc1da3c7af7c6dd3d25a345b2c555c023d48b92b53bc96fd4a1db91248ba6d1a4582520fe260378ed2

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-journal

MD5 51484df224dd9704cfa33f3b94ff54e9
SHA1 b88910e7433b79877ccdde08a0937d1bedc28a67
SHA256 e519beba603f66bd9422b5d5a814d5f9bc743fa844692135378f0957b39c8d7d
SHA512 426cf60217fe6d0ea832cd86a25cd3a64276df0639514ba39faf57d7281a1034b1cdb9dcec1645764d2fb238271bd1c6579a7d98445d72080bddd28130142a4f

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-journal

MD5 e914e942a89bfb9bd6354de14ef72c02
SHA1 cfa2f2c3069f85b52e92a703106a7a016a0dcced
SHA256 3677cdb9c3f65580f69a3c56a8764356f5800f069563f3dc8b14d50dfa0bc008
SHA512 1d9b7b91e265a1df3d5aa6253e415f574578ddd0bf68a377a0b4e96566a5d0573565ee0a4c302503001f9f286161ea9136efed2ccf6fa402bce273efed283c42

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-journal

MD5 f1cf9b579e5e09dabe967503bbbbe158
SHA1 284897bf5f413606ff8b245cfc520aec374b8d5e
SHA256 decaca49545e7573355da24beae0442f9dfa2e06d6c1c7b2f52ed9313ba58849
SHA512 b974be171d2cd10a43aa1246f145bb2db70ce4e6396639dba14bf1efbe7004a1aeabbf81a7730a067eb13a6a807d660d2d57779b2693beb97db0e81143b741d4

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db

MD5 484df068dc370197c0e37af4f433f772
SHA1 5d071329bf5182e60b2d268adca542901d492001
SHA256 3ebaaa9fc7a9245b413f62f91d9e689d468456dd4b6ce2408bcd2003cbdbfbd0
SHA512 587e7b68f2c167d39dd50744f2892a461a67cb073e8cf9f6eb2ab752e07841440dbe212af32958248d15af5d4001e7fa12f86cad62578ef31999355a86c3b0b5

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-journal

MD5 b828039840c871e894d1061b058d2af2
SHA1 ac48624f6347194ad376e3fee1da496f16e2dd91
SHA256 fc84e19094e213818c5df0d8104a2d3221ea1cf5de97c946993a2c61b3263e84
SHA512 2f9cc4488a258ec4849b4cd1ca6567ccf476d00d440640669316f674f82f8622ca9feda289eb69ccb344945633bd193c6624c282c43f28163d507d7ed495d02b

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db

MD5 ea9c2dc01d788f2ed7ad6a455e32335a
SHA1 3da6ee06226734e9a402c3ef2b542af3b509b6af
SHA256 ddcb0e1970efc2dcb42a4dd328ef8c10f3512b39a47277d5b075fd3b92dfc3a7
SHA512 5b834f25f6f8afea98eec78cf8e148671ceca48aee8019e09308389c1f336e47e55666fedf66e09c97e827c375ade0fad635b98686ebd2f72240108670d25e76

/data/data/ua.FoodSoul.DonetskSushiTaun/files/ZPkFS.log

MD5 66ff4d67a064a78b1d76cd2eda0dc11f
SHA1 6f279f51d775d77d6e2225c47e10ebd61a443da5
SHA256 10e702434a9f3cb389b0873fc75d542e6f2ad4a2bb5bb220a2ff42326ba51af1
SHA512 70697cf6eb3234bb99a00211b8adbe64382dd0c7059b811ea9e3511a8a35f8ad7e71495cb11e2dde44a8d138a414d932362d97e3ca7e12491e483819678f5d99

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_data.db

MD5 ee3b904b5ece1d8ed82c465686f5fae9
SHA1 d061713520b3682937335e92c2887b6e6dd57c90
SHA256 cad7ccf487e28919572308d669035a5018f9f1a23094b04c89b30c6268352935
SHA512 e0cf11395575114207a9ed5697ac16cc0271b7a5d6903dcbf99cea081da5e834a518ceaff89ad9dbc8279174aca8de7d957f8e80ea1c1695954269ae58a90159

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_data.db-journal

MD5 9ac7af205b8be882fd642f43e1eb6448
SHA1 1c1b31fad1932844126864fcfa16dae77ae257bf
SHA256 893252cbb4cabe1ecae0f57c3fd7acca19a28bc996b9ea17da6157e203245c13
SHA512 13f0aedfd5b66e6955ea78b9b43c80c5dcf0b817d28dad71ca8d40c66e7eab9a7c8162733fec586c14fffcdb027317b48dcb7aba5d13565d5300c2c8d1f101c5

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 639945ddb1aad3d569946aa21ea100b9
SHA1 cbad0f96f4dbc5256b8ca4d5cd2324f2294970c5
SHA256 77ab51c078105291964cd7d753646e5279b84cc200284f273495542891b1adf2
SHA512 680ed7f686587fafdc1e0bad82da8cef1a82f641b41dc28134a55d12485d1e52342e0ae1e2cba5d4e6c836bc6b62776eec0dc763d05e9ae6c002053930bdba26

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun

MD5 b0a4506e1b3facf9f8557c1f710eedea
SHA1 8f6682f8702958f199e8661221c9e70fd087460c
SHA256 9cecda4749a884195482c861f06108d9ba74c19f9a78c737f88b34e7252150fb
SHA512 80dca0b2551b94874ec779597894a8cf6c653243083ed616c4b81413c2e4e40e1394705d73083aa40a2b6df210d8c9d3f7300b6ac207a8d1ba8c5e88c227b490

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 65200ee25bf2e0e3510dac01a329f5ad
SHA1 0073b9b149faa748f08b41eb26143afcb5df0d25
SHA256 2b2e3612ed0e7d94c3a696295fab31abb425884dea950390ce9e89e712509cb3
SHA512 50df70ec0d0c5fa0546ce0790debb390125d74e0f851e0d399754c9c4e08f65c80d22ba8f7111606e80a1dd6edcab271bf90a311fd05154469ec28eb61f9664a

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 df8b4c2aa95d156dbeb94679f8c6c84e
SHA1 19298b0ce3c48ea3a797f99bef2f03e70a471fc9
SHA256 c3b51aed122498e430a8a167bb6e4e070985933c8a998624b8dc1e320600f04e
SHA512 065179fb2450c38cc2606aea539cfae5f4d85734abf3794923c1d5a205320f42b9fe19d70cf8b1a9a456ea1f46ecf754ecbc3702f76fa77d2cc41fccbb442e42

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 b3a5a4d2a80bfcf09dc6a4a068f6a12f
SHA1 0c22d935fd7d38409a4e6e8da869084fe269b5e4
SHA256 6ec42d7d49a1e9b8d2b41cb83cf46d07900fe159db5184fce99575dca3a81ccc
SHA512 6a549e6111cfd83a7bed3103e8bdcc538191b527a9f31b4f5ec676a3557b08645b0e6d982352388cea75d12305f9cada56cb024bd06527becee06555187b9973

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 ea438b67f65a71c9931df44bf017cdf8
SHA1 3991705ff656a277165bd6da3ca32391bc3510ec
SHA256 121378b2a2b87d46ad651175618be3adf05cccfb0cf3f8dd4b5051f4b41b269d
SHA512 bfe22619fe812263d18c3fffe50e9b09651e74394e6771222bc4eb393676bd6535c7eb5cb44017519cef385e9c9baf7f5d04b5cf9e2f75d4a25cb195b1812e74

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 df8dc8a1a04384781e662102e089b8ec
SHA1 f00dad687a9993ba45b6b2ba8960b32f007868ec
SHA256 77ff4befdc4da8c8456052d95b59bc47ab90f237e09c714d4209f46e4b40d18e
SHA512 30548ead54897e88394308d4af7f973c86d3901ca481bb733f35856e16b89f6e0a2cebc1e0a83f8eeb423ba7854678b00f69b1f8955ce486df85415ffdb72a3e

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/credentials.dat

MD5 8083e36c31105d8224de7b7f4cc54dce
SHA1 aa2ac005a918a0ae8cdb17f91245aba87eed70d4
SHA256 7962137ef15aee3c78e8812c38bf066b91f8a25e3ecb9558de5623cae84ac5e3
SHA512 50c160e8ffec8afd783fe16b4bf1ba9c88fcdeff033ac6edbcf097e83e1de18873f3f9b33b3616912599513cf7dca3d101adbfeb99ce30aa6f040e8265c0298c

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 c4b1130b0533b31034defe0327a2c700
SHA1 6cfd2d69a516977a3eb95383b9083730f324fe6c
SHA256 56402018c788100f929540edf376a13b4e7a35343c3f094785b778e678d198c3
SHA512 916eb9deeafb6527a80d984f08c7326f79ad29d721fc40f11e9e017d2d66c14444bfd6256a488f378f5accfd45d41c3ad821cbc030db71e405deac945cef4769

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180

MD5 1cb457a664c621c7168842dd843f3c26
SHA1 cfd20e36e60aa07ceb4c129e5fac5cdc8eae0ee2
SHA256 a76418e947800e58521c375f7bc9d4785cc298da8b75873bfad409f465257a24
SHA512 916347e0392bb4531e5ed5418cb42e6becae6608d6c5e9ca44e16b2d77b670ded3cbc9cd9bcea8a5ce8c5b6546590d73d27e411b960aa47e846df3c2f47da281

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 fa77c7f03e6e254e82d017526f42c23a
SHA1 007db0f9f4d397f8f71421c6fc0c31f01acdfd91
SHA256 a530cd931a1325705633eae6403a587caf0e31695e9d1a15bc5d1f0103d4e4bd
SHA512 fc46556984bfa7258f3a95ed2d8766660a4fcf9fc8475e39a2a3cbbaf0a871d5f34a97fce3f14c624ea1c0945142593b36d68bcacebedfe53bd50c7ed32abb6a

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 efee98b5e297a6ea0877e7a235a35b96
SHA1 0720ecca0262c79be2bf8ebcfbbec44e8101702c
SHA256 3eeccf8e31ff5a1b3b9835a5fb6740763e69692e7232c874c851da1e3df0c131
SHA512 a85d48e4b7c7eb8b93dfe2be9cdea1f99ddeb930c50146291a63708ca509f4869444d0e47d02ec7ca291561d77da427310b3b1d64c32125390b427dfcf73756f

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 36447152ee0b5b2b004ccaa35d41f8c2
SHA1 858e017f988f7e547b6c7a38eca4fede61224bd5
SHA256 1c541d5d02326e9c7b189dc32a1ef65311d862732bd415bbcf132bb4d71e6e5b
SHA512 98d92623ed55beef8a3fdba6814671bd8a9dfdc038d3563de5eb94881abb01725eb4b4f862ce690c79cf13f734df81a57190a247605b181894b9e813767df715

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 939e3a675bb0ca99593b3499defae775
SHA1 759efaffb146e7c1c6370cfa28a5f67f8873c7b5
SHA256 34b9191cdd3ee3588c392734004a8636e397166f54155a6856c7889b4a8209a4
SHA512 31e211ef8e21350be2eab07fa0d84f79253b38e62562d08e859dbd6f16d55e546bce8ef9fbd8c6c97971646dbcc169fe487ce2911431499ef46b5b5e4ad3922c

/data/data/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 b04a3f89e37e2c7a3694a7cd6daa49a9
SHA1 0efa3f2674dca585892c61e2ad6a378ee9d17e0f
SHA256 948677cd450a7a07bc66e1e2163f12234c6aed8b81b634039264f8c6507c3082
SHA512 2c36f2088a31b3574c72ff6b8bdcd6cfe10c436150441d7d3316f7a4c0e29b7274dd65a71d3d9cbedb641c32cef4691fe0166283e67a383f4525aa97d75ac4e8

Analysis: behavioral3

Detonation Overview

Submitted

2024-06-05 15:03

Reported

2024-06-05 15:06

Platform

android-x64-arm64-20240603-en

Max time kernel

178s

Max time network

132s

Command Line

ua.FoodSoul.DonetskSushiTaun

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /sbin/su N/A N/A
N/A /system/bin/su N/A N/A
N/A /system/app/Superuser.apk N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Queries the unique device ID (IMEI, MEID, IMSI)

discovery

Reads information about phone network operator.

discovery

Schedules tasks to execute at a specified time

execution persistence
Description Indicator Process Target
Framework service call android.app.job.IJobScheduler.schedule N/A N/A
Framework service call android.app.job.IJobScheduler.schedule N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

ua.FoodSoul.DonetskSushiTaun

ua.FoodSoul.DonetskSushiTaun:Metrica

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.200.10:443 tcp
GB 142.250.200.10:443 tcp
GB 172.217.16.238:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.179.238:443 android.apis.google.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 172.217.16.232:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 api.birbira.xyz udp
US 104.21.17.160:443 api.birbira.xyz tcp
US 1.1.1.1:53 startup.mobile.yandex.net udp
RU 213.180.204.244:443 startup.mobile.yandex.net tcp
US 1.1.1.1:53 api.tridrongo.info udp
US 172.67.161.129:443 api.tridrongo.info tcp
US 1.1.1.1:53 api.oradaph.pw udp
US 104.21.8.212:443 api.oradaph.pw tcp
US 1.1.1.1:53 report.appmetrica.yandex.net udp
RU 213.180.193.226:443 report.appmetrica.yandex.net tcp
US 1.1.1.1:53 arb.grattomania.space udp
GB 216.58.212.196:443 tcp
GB 216.58.212.196:443 tcp

Files

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-journal

MD5 e5c8439d113cb4bd8edb066f85e94f49
SHA1 21bfef96a9abb906b36623f14cfdd06ba40d4aaf
SHA256 aa05cf79354dfe7f54890e27954f7d9918f043378084ba3ca8a9e0e0be66ea94
SHA512 c4e56a9e0ed5154592d7f68f723d5d7c9e1241a1493199bbfc193d51ce8b11e66898851f3406deded07908dd3fd22bb06d72671763a4e9109f4158bcace27c2b

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db

MD5 571d74328730f0bd149b82aeed174cb0
SHA1 4e6d622eae44406c3b9162123ea92ac0a49b06e9
SHA256 f5969a11a03de32cfc8e5a2b1a930a408cfce600c8197dede01e6c0d949368a1
SHA512 5440468f99dacfac516d3c456f3d12faf19f3fdbfc63cdd88f1240095385814eec843c920dc9e0b5464230fc6df17b171e2ebeec1e1ffbed6f7279702504cb1f

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-journal

MD5 6067a3048f13b17a6780c83ec7a04ed3
SHA1 c99267a940817b971c8f9368888228c9f44a6a5e
SHA256 8c374cd71e0f2d28cd4b07c8955820045a3ec1ef06195ab522ee3fc3819f27bb
SHA512 1a25e802584fc21fe2515c3c1349fa9ebd79c998396ccadc81175b1ea28d6ad27c628f32d12b93f76554355493966e287ba0e0cc3e28ce6910f3a3cf6d3ac09e

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-journal

MD5 72b855e61110469dd9ca54d4c3afb198
SHA1 223b475fcc82b505cf8b8c81ca66d09330c661c5
SHA256 4c32dbd3a1e0edd336b630ff16232f7904ec5d2fb453623fb4024007f78b7d21
SHA512 860150c16c749df4aff0ccee272617ed9281dfd76a01906609d7a18c17b0ba2162ad8e8170e22b005a555cd59513c948403a8632a70f73a80c8990d33283d12c

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-journal

MD5 48e16b54d069c11c6b4ddc2ac9e8021a
SHA1 ddb3458687643fec2cc8a016c95d8f36a49c45b0
SHA256 3c32bff7a7881123f459ced79ea2f8c78d7e2a24bad45da5e3bf0d32af76e2d5
SHA512 a4ec5d26f056c37a3ab5ead31e2ca03f1913bc52429cdef11fddd0fb6cf0ad1eff6e5f652b6432a8136ad3c858fcbb333cd933a7e726572f81fa86d6eb1898de

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db

MD5 e5639b469346d3d19c79ae3bdc2f4a9a
SHA1 b4d9041b94176f65417e63e77f0f324b81e8dded
SHA256 cf283c9f2c282ef339f1ac0c4eae7d6f44f86bc1744cbf8a9b5703edc7368aaf
SHA512 273aa09cf7f4de26661bbedf2ecd180b5adb537022cd824d2185beaf7eb1784bd1ea1f1f22c01e4762729bdefeb81964f1a47f13e90b883beb27ce7c8d1f03b4

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db-journal

MD5 d393c5195962a1459f8c66f44aa23af2
SHA1 77a8c2bfeb21f0716e6b2337b14edac35d66a463
SHA256 fa30cb13352ae67eec7ab23501ba5ed14525c4bb7b5d0502d94158ecc4982f54
SHA512 c45a1dd053a20505d207eb7da6d91e986687e30095ce66e768aa421d217b7c7c3d946f0e5d22fe627e0eac0a9b41f4022d075bbebd14c8efbd679b6eb77c9561

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_client_data.db

MD5 2b164b1bfb0876d901d61b2e05b09eb6
SHA1 e5420b861306300ab876911461d13b751b042415
SHA256 fa8baf11c444c2e9acb0c60e76b2bcd3a55e07730071eebd6ba2168b469debb0
SHA512 c572fd6f4f6001e9ec3f6b35cb4f0938608a2a6618b88e47bca6c761cc819d53220918f47af6fbec6d47ff369e0b75477a03e5e4e1dca8004f822329b060d82b

/data/user/0/ua.FoodSoul.DonetskSushiTaun/files/ZPkFS.log

MD5 d01115ab3b3ab6cd76adfbc07994cd9a
SHA1 2e7e72949ae2c3c9fc3faef4ff50f29153ce10de
SHA256 477bd41c92d45d060b57856b501048725ba8cd344d54d65459d2f6a0d5c38e68
SHA512 bdf67bda728f6ba75d0f993d24b0feb954d5cbc369d522ea553400482ccb65ed6c9fb042608d7ecb2940bfae1df0e47a7cdb37409561581c8aa31a774334092d

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_data.db

MD5 02281f000fd3a9e6ef90dac13d1c2283
SHA1 74cf8922753e7c0dce6d5148a76ad27504a4f0b3
SHA256 0c86830eedc8e42ab89ab0c702445f8cd5ef5694f0b9f7b289901a6778b16bed
SHA512 84a5964a6b6319d34ef47510d671c4a3c2bd91fc083640fee4a7414a5bdb649ef012b567267359dff00eb82d754b8cbbac2fc236f3c486dabe8d00a2a531b0c1

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/metrica_data.db-journal

MD5 87562a6de45ac894a5c509494f9a3e30
SHA1 7bd1074573b1a115aa21ac6f77c867f22d50e2e4
SHA256 5308a303fd55373b5f9bb20cc1bfe6e7acc94ad310ecb5c1464eee80716c3843
SHA512 ab0e532641a1ae2232a5fac45aadfe1aad5bc286c9a62dca25d6980625e0a3ee31dfec136d0b3785bcc516ca1b3f451139673bfe66a11712b450bf0677368f21

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 6ca6902a1695dfb8e02a54c004e31913
SHA1 b4adc547e20c80a551293408344a121c737369c0
SHA256 1386d69d3e96754744ebcb09b341c69df633cdc241763d8ff2e1e90015ee85a4
SHA512 1045b18454a5370c7623219f2998a771832471edc2170f3a8240d421a5060e82ec5629c8f9ae69f08cff3254ce2de21506d2d9d0a5ab8ed5a233a0368695d41f

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun

MD5 221d617c1ffb04f735f7aeae4853d470
SHA1 8ce14b8f6834814790417f4b82bd29494a7d1a15
SHA256 df90b06e58c0cb7d2648b148469870d0098b02043764d2df5ab145b75ca88555
SHA512 6b9a0c134fc6a4ca1f36b2ba043481c0fee2a515720e5f202faa9e7e0098df1c5f393a900c52d00782e8c87dfd6326d85ce3a9a7d7bd49d5f03fcddb3ca21bd4

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 7ed474368d7dcfbd203260760e316a24
SHA1 43d525fda5ae2de6622edef97058be25c03bcd59
SHA256 8f079ac2937337615903fb6a143d3316e95159f9fb0a16f9bddcd1d4c1e524ec
SHA512 e88565d66afdba97dbe63b9d30a24e6ab4e5e7fe47be4d287c7dbb2efd6fb3ae034033bcdd25fa3227796895b61da8b2b2431ee4de4cb34b1284afbac6455ac2

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 b018ea23e23456a4ce03aa08248b248f
SHA1 497fd895f31110e41031a860d05a06535e23e7af
SHA256 c7e20b8e2a21441f807f08d1a904ca060bc9299a2ce7be077a2e4ac812659abf
SHA512 cbcf7e0367c98eaba6949b4bd6b4c443b72236ec499bbfe655afb36280c08eab15c03f25f328657a680872fe5c09e138bf08c2008dafd8de069987a78000d646

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 ffb7c6f113d650c31c2d80522bd0aad7
SHA1 a0277a1f3e4c261b0f96af2b83a77cf018198d3b
SHA256 11f293b7390f4a3b1ae23b7c7bf30d8127453689cde030b023b0e22dc1e66566
SHA512 03be631fae15ce2b01d672a203b0233bbeb15257db87a037ff4ef26c0525af2bf73770bb72573e19819a5a4f744b108d8f6620bfc3cd12ef2d9859a12b4a3e9a

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 78c1c1196b95e0bc75000405f32082cd
SHA1 461766effa6a53249152730da0f7170f9ce3e8da
SHA256 16bd6bea2ab2f91023559debd4c444bb99518430f4cbfdfafa2af880fab36de8
SHA512 85e30039214c278ff8b8962a09ebb2078f58bce5e2ec0b94cea5e3fca4210e86ac15977fcd2208cb1ac710d56c9560e66b04e9fa75c29a05d8f1567b4703e41a

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun-journal

MD5 84605fe77ac9fbc2999dbec5edb78bbb
SHA1 76d017faacd7e7564fd1f86b90a68db2d82e677e
SHA256 863574c8d723670c67aea9568c84cc2477b85fd17fdb293dc184c20ebb43c949
SHA512 d24067068522aab39b3b851336fa325cc0583a47f8d749fdb7e4312c8945d25b67d1936dfea0945a17c3e2502a48fb36d38a10e6fd4db2e30fd7095af451f473

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/credentials.dat

MD5 e49d902b1a117c680eb0a628a28f8785
SHA1 64e4f767b5c149d71511f5b7749a67129d2cef04
SHA256 a6e96e653cee2a4eeb7f163ae6b8091b60d8927dc0cba9322720af61f50fba10
SHA512 9d40f7d31c2e118b4abe80885f2f86388efe94394dd0ef0491606d17f318cc135aff7760d65a57f98d89a6db95d7865da4fb9c7ab9be5d74375a611b19c94277

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 7c386e590a5f9e0521815e9153369220
SHA1 d4034d9fa5d0875f947c419f40cd23a7cebd0b9a
SHA256 d7ed88e064d212063cb6cf2b9a7c42f3342f5bd7ed95443888d44e0269eef2f5
SHA512 6b5e2ecb05f1eabf2d4216b95b25b096229c5782954c49f3607c54a1357886961038d760e3a983235dae1144462c6ffc6c503006b2699b633cdc538c8527763a

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180

MD5 355602dd26d188c7b56877f3d1fd338e
SHA1 1a601346727a65901ea84221737931d17a427e86
SHA256 903a61b59e8988e2df5ccb257442174558cbdc48c188a7d7762be7d6813b989c
SHA512 3a8ba8b8e194f56d6a660cd87ebfa9cfe0a71988121778c15585a7d3f1962029034786087a622f919491b20c6ca21f318ac79317670d7ddf4843e5405b144e7e

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 22c4931805f2c0e43032638abde62341
SHA1 b45ef994fe48c6ce7cd1c1ca8239b1fb5a5a0925
SHA256 e2aaa634436b648198d22360192d80093de08be2eb05bf2302f01cd37617f82b
SHA512 c463324cbe511aa444ffd8165c92a42d1ad9d24b956fe897bf81f422aae734d45c3f0a6cfa3a31f0b173068c28ad6f614cc3f6676e0fecb5113351517fac9a56

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 c3e164b30f32492772fc848a8242eb88
SHA1 2bb14e8c31e197f669db8f9c01ef362c7abd5594
SHA256 9b9359e153a0b52fb546dd8af7928d5eae846c6f18fcad6306dee3b2a77bca5b
SHA512 3f4cd06da19eefc617a92b8fdb67e35740b5505b161bd4f5f2276f602f88f87dff5b4c4b8ae1bb3b9ac1c0a3a37fb7847ebb6a2afaeba0dbb0416f19a4109362

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 ce907db8a57d3145629e14bd3666eb92
SHA1 67299d21d31ce392bc99f5ca50b73c70a3a5f39c
SHA256 4103769aae3362d990ef4a4ec5640163532b28ea4583e819436f1acdcc8ff02d
SHA512 debf445adea4a4f76e87b1253e4838469bd4c81ab56649eb651ed47c989d2b0d2f80492a8e23a07078384d50c6a434e6041eac3bf7ba7c6bc0e4f0aec2932e15

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 fd9d66d068be965cae461c33706e1c25
SHA1 d06e240cb34300f3dd0638160b6b7f699d8b74d9
SHA256 455a792afd9feb3b759dbd0eefde4033c07184bb664245ea79decc926e29adca
SHA512 8179454d7cc0c92bef274805a3f08fbba76bee3ba33cf52efa5860cbb795930dfe51e4300653d9dcf81697c55670483bf51daeccad3623e5a848e6d5118d4be5

/data/user/0/ua.FoodSoul.DonetskSushiTaun/no_backup/db_metrica_ua.FoodSoul.DonetskSushiTaun_20799a27-fa80-4b36-b2db-0f8141f24180-journal

MD5 b610d1c4160c6870ed9cf6431c39dc4a
SHA1 5e848ad87682f0e4d90f97b27adda39bb39bcc5e
SHA256 5fe1e90e62066e86762bc0138989d67e5b86197949353f9e4ac9e3b12451aa2d
SHA512 512c3fc919f32513bfe02543dd09b365e887c1afa480bf50f2a60f22c3432ed7f4138da83da5d90dbdefa17f4bb2151c4c29f33cf714ab078e8087720f2b8af5