Malware Analysis Report

2024-09-09 17:53

Sample ID 240613-cp839svbnl
Target 5246c3b5d4ce006bb4295eebf3f836693623ef7769c3f0aab219b2c0902a9d1a
SHA256 5246c3b5d4ce006bb4295eebf3f836693623ef7769c3f0aab219b2c0902a9d1a
Tags
discovery evasion impact persistence
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK Matrix

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

5246c3b5d4ce006bb4295eebf3f836693623ef7769c3f0aab219b2c0902a9d1a

Threat Level: Likely malicious

The file 5246c3b5d4ce006bb4295eebf3f836693623ef7769c3f0aab219b2c0902a9d1a was found to be: Likely malicious.

Malicious Activity Summary

discovery evasion impact persistence

Checks if the Android device is rooted.

Loads dropped Dex/Jar

Reads information about phone network operator.

Acquires the wake lock

Queries information about active data network

Declares broadcast receivers with permission to handle system events

Requests dangerous framework permissions

Checks the presence of a debugger

Listens for changes in the sensor environment (might be used to detect emulation)

Registers a broadcast receiver at runtime (usually for listening for system events)

Uses Crypto APIs (Might try to encrypt user data)

MITRE ATT&CK Matrix

N/A

Analysis: static1

Detonation Overview

Reported

2024-06-13 02:16

Signatures

Declares broadcast receivers with permission to handle system events

Description Indicator Process Target
Required by device admin receivers to bind with the system. Allows apps to manage device administration features. android.permission.BIND_DEVICE_ADMIN N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether. android.permission.PROCESS_OUTGOING_CALLS N/A N/A
Allows an application to read the user's call log. android.permission.READ_CALL_LOG N/A N/A
Allows an application to receive SMS messages. android.permission.RECEIVE_SMS N/A N/A
Allows an application to send SMS messages. android.permission.SEND_SMS N/A N/A
Allows an application to read or write the system settings. android.permission.WRITE_SETTINGS N/A N/A
Allows an application to request installing packages. android.permission.REQUEST_INSTALL_PACKAGES N/A N/A
Allows an app to post notifications. android.permission.POST_NOTIFICATIONS N/A N/A
Required to be able to access the camera device. android.permission.CAMERA N/A N/A
Allows access to the list of accounts in the Accounts Service. android.permission.GET_ACCOUNTS N/A N/A
Allows an application to read the user's contacts data. android.permission.READ_CONTACTS N/A N/A
Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION N/A N/A
Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION N/A N/A
Allows an app to access location in the background. android.permission.ACCESS_BACKGROUND_LOCATION N/A N/A
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE N/A N/A
Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE N/A N/A
Allows read access to the device's phone number(s). android.permission.READ_PHONE_NUMBERS N/A N/A
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps. android.permission.SYSTEM_ALERT_WINDOW N/A N/A
Allows an application to recognize physical activity. android.permission.ACTIVITY_RECOGNITION N/A N/A
Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-13 02:16

Reported

2024-06-13 02:19

Platform

android-x86-arm-20240611.1-en

Max time kernel

147s

Max time network

188s

Command Line

com.alienmanfc6.wheresmyandroid

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /system/app/Superuser.apk N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.alienmanfc6.wheresmyandroid/files/audience_network.dex N/A N/A
N/A /data/user/0/com.alienmanfc6.wheresmyandroid/files/audience_network.dex N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Reads information about phone network operator.

discovery

Checks the presence of a debugger

evasion

Listens for changes in the sensor environment (might be used to detect emulation)

evasion
Description Indicator Process Target
Framework API call android.hardware.SensorManager.registerListener N/A N/A

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

com.alienmanfc6.wheresmyandroid

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 graph.facebook.com udp
US 1.1.1.1:53 in.cuebiq.com udp
US 1.1.1.1:53 graph.facebook.com udp
US 1.1.1.1:53 graph.facebook.com udp
US 1.1.1.1:53 graph.facebook.com udp
US 1.1.1.1:53 graph.facebook.com udp
GB 157.240.214.1:443 graph.facebook.com tcp
GB 163.70.151.23:443 graph.facebook.com tcp
GB 157.240.221.18:443 graph.facebook.com tcp
GB 157.240.214.1:443 graph.facebook.com tcp
GB 142.250.187.206:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 216.58.212.206:443 android.apis.google.com tcp
IE 54.76.142.215:443 in.cuebiq.com tcp
IE 54.76.142.215:443 in.cuebiq.com tcp
IE 54.76.142.215:443 in.cuebiq.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
US 1.1.1.1:53 www.facebook.com udp
GB 157.240.214.1:443 graph.facebook.com tcp
GB 157.240.214.1:443 graph.facebook.com tcp
GB 157.240.214.1:443 graph.facebook.com tcp
US 1.1.1.1:53 scontent-lhr6-2.xx.fbcdn.net udp
GB 163.70.151.35:443 www.facebook.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
US 1.1.1.1:53 www.facebook.com udp
US 1.1.1.1:53 scontent-lhr6-2.xx.fbcdn.net udp
GB 163.70.151.21:443 scontent-lhr6-2.xx.fbcdn.net tcp
GB 216.58.212.206:443 android.apis.google.com tcp
GB 216.58.212.206:443 android.apis.google.com tcp
GB 163.70.151.21:443 scontent-lhr6-2.xx.fbcdn.net tcp
US 1.1.1.1:53 www.facebook.com udp
GB 157.240.221.35:443 www.facebook.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
US 1.1.1.1:53 ssl.google-analytics.com udp

Files

/data/data/com.alienmanfc6.wheresmyandroid/no_backup/androidx.work.workdb-journal

MD5 f587cd78abb53b3dc4f2ce461ea185a4
SHA1 30e4e5359f16d91e18ee4c8a2c782a94e1ed0c8c
SHA256 0e6e09ca027d6bab7e5f73247b0335fd7c00304ef399454319c71fb5bf6ff1e9
SHA512 ba19ec1efba705a17e11a35d0f99d9d192cc4147601f1bbab722a62ecaad5d0fe10614af65256f75e75854c41da02d42944f828a58384ab2d98d7bf7f99f8b6c

/data/data/com.alienmanfc6.wheresmyandroid/no_backup/androidx.work.workdb

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/com.alienmanfc6.wheresmyandroid/databases/com.google.android.datatransport.events-journal

MD5 6a9fabde0ace949f2b77692deffb9667
SHA1 b365f62686572344bc1e0dbba2987d14a2ae9f50
SHA256 b5dd01e2229e442413f32c52cabe65bdc3908713d8daa4dc8777d782220bc008
SHA512 01df1316f639c274d2993772f44dd6be3e9d0ada453fffb3aad55a09de5adade7fdc3819dcbc576e244614e524b5248cf1da50659706fb773226e6c5fed9ee72

/data/data/com.alienmanfc6.wheresmyandroid/no_backup/androidx.work.workdb-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/com.alienmanfc6.wheresmyandroid/no_backup/androidx.work.workdb-wal

MD5 5dbb4cf2d9d0804d05e34aaf680aeae4
SHA1 be90e9d84ba02d44ce7dd1e4eb3d67b6ffc7540f
SHA256 f6d51d9dc2b8fb291bc2459126017e695987f83d4a8cc6901f1faacd55873599
SHA512 10b702e301c20c8d5c7c6ad2311ed26176fe84c7e25a4ad441b0b3c9a935f3c5933dc831e55dad369f9447a69a80a3d0f53e79b4e0d5e91a128d16971ab2a4cc

/data/data/com.alienmanfc6.wheresmyandroid/databases/com.google.android.datatransport.events-wal

MD5 c7de63e39391f0acde0f857783c2815b
SHA1 779dc0dcbbd360dc49ee6b6a79c8e26be0ceca50
SHA256 5a65ee52a80b27df97d4f194f98cec9321e517f1284dc07bb7573927e3c09ff7
SHA512 8499a64b4441f6cce7c35c31f59a93643e279d6aaca73d390074b0a89e8006cb81601c69e0f0e5293e53662d8c02552a9fdb294c2489a6ee4e680294e572c364

/data/data/com.alienmanfc6.wheresmyandroid/files/audience_network.dex

MD5 e8267ce8fc81e9d1c7099d480486d960
SHA1 0aef0c04cd5ebe6f4fde6e2526937b7c64f7d109
SHA256 6233ba1598115f3646b60b99e1556ce1ff0b66458c67620cd2a94fd9a59140bc
SHA512 a1da017e8f0316a7f391b49c10cc94c877c425bc0f5320ddacb6f076ecb7dfe3c6132a74d74d025e25c038dd4f220811517c4e9eabbf542836080b83e182ba2f

/data/data/com.alienmanfc6.wheresmyandroid/files/PersistedInstallation959050670841275802tmp

MD5 c0d6eb40b59d9f3e04a991804db2329d
SHA1 8c0240024c052bc089ee62490f30fbca92b7cdb2
SHA256 dfb1256d6921faa9d5fa380be8c98cfea5ae26ebc1388cbddf3f547e61e3bfd4
SHA512 559487f200270710f02c62517068ba2e5eb0e97fd0d5dabf3a4752eef93ec99137e30ac7b523d0c972b5d45170535869d6bab44fa267c416268f4b571c07abb8

/data/data/com.alienmanfc6.wheresmyandroid/no_backup/androidx.work.workdb-wal

MD5 8b62dff864325480f9c65c07d7fad040
SHA1 1bb11b19e98283f70108f5166a51354f7d832ac0
SHA256 47b818eb28dfcd15f29ecd4034972a552788bc965159049a3a8a64e9636bc481
SHA512 30d47a0156ca27ed7cb56833729f873de7a51f6753cc26c02f548f828fe360f8a4617c84327026d51060ee29152832c629510ad284962e7e7e2a6aa9f23268d9

/data/data/com.alienmanfc6.wheresmyandroid/files/settings

MD5 9e329ba70726df63aa018bcfc9ab0be9
SHA1 9cca7ad4974f60f0e4652d4262e249d2aaf69954
SHA256 de1ef3bf255414323689a019375f9c4c04b8c1c523bbfec739630cb600d88f08
SHA512 8bfed8d7c84d975a794402ead9f39bdf7e9053db9f9f7aa557d6f0c73981eca3a81dab097c0723df2d0f789faa1eb6ccb184715c7850594f05d31c772de482ce

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_analytics_v4.db-journal

MD5 6a49401c74677517e3a08203f98ca3f3
SHA1 4efec87d747722bceb213c40c47a6c0628d610de
SHA256 67f6bc80e3481ae967876bc7f5052383c75476004cf17f72cc688e31bfbd6474
SHA512 7da791c4ab72c60588678cd8645b5d21627d206a8df24107d4f1063c03ccf13c7b5d760088deea43dc91f2b6ad9c1426c0845eacfde1f1a15073f32ee1a8b285

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_analytics_v4.db-wal

MD5 cabc46dfef7b32c0fa9fbc365b1ad7b7
SHA1 f0198f07c996f3e217224698bf51ae74cbafcf4a
SHA256 cc8f6f6c06c7a5c9c9f51a77a8e3b32cc6681a11c57253b7e2928a87cfc52863
SHA512 cc34a60ff4108d1d19724e0d415a52c4ea798e6f7b9284086fe2e4d424aa0239bb72ebbc636045abf69e4e2b3d7be84242e4c852cc949ac94bdc83232a37cc8e

/data/data/com.alienmanfc6.wheresmyandroid/files/gaClientId

MD5 56a9cfd4979347ba4cf6591e718222a2
SHA1 0d5bfed043208f8b65f8573fa66fe78a41f468b7
SHA256 75ee1d9aa6f2529eeff783509f0da61c03d6b174eea237de395934b3a61fc368
SHA512 59d4e3be0e8e0d9594b7e592a53f2f9266134f53c10ae59082d6c700d71854aec821edda24345b99b7b5f66ba6829c838d06cae4ad81fad82472b0fe034de5c7

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-journal

MD5 15e04d8094b24ca06330eb2aaa3daf57
SHA1 fff81c2f249799feaf8500a0b9c1f0e639c26abf
SHA256 0eeec4db0285f0d49956ebdd501b3877af4db97e761d4dd6e850a80138c9d5ef
SHA512 8b1c04dd8ef7e81bcaf054373ee0b5046695ebfe12d6ff5a8c272c017177b07a5ab8dbe9222f984878e79becaf31d2d867ca5c70182020c59e8dbcc84739a64c

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db

MD5 7237409e0640cfab7bdbd429bf821a3b
SHA1 4c3da934842f8d4835dfe2a9c275a300e5123309
SHA256 5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512 c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-wal

MD5 0a36ebd86e0a895fc6edca934612f924
SHA1 4f854cb675592f2b98bbaee579c7c55d498a8531
SHA256 e3510367db0f72d6efc19b7787a795c603344b45366c5a08b745deefdc66190f
SHA512 b0736d21723a374b6592fd2ce2f67f2560db86a1eb9b31cdd037594c0c5103baea92581323c593177b16f521152270ff8cf6c3e33eaadd671d7df4563a2c3ac8

/data/data/com.alienmanfc6.wheresmyandroid/files/gaClientIdData

MD5 9d553f10584976858089d8c92ea64413
SHA1 ccbbd87f494cf22ae60e2278ff594bf01dc56dd2
SHA256 7d34e57550f7680455b25d8bc9abb5687c22128b4b3bacd6b59e417b8481fd68
SHA512 d08e8b1da430d9ecb1ab509972211257e500b0820ea11afbd363a02554d49ef20c8f0bb10d440d094179af78b22fa0f3f1dc7aff29dae21fbbc86d5432d26fdd

/data/data/com.alienmanfc6.wheresmyandroid/files/gaid

MD5 9936efb3fe6f9746f9384d99d7bfc3a9
SHA1 6a73de55872bc19374f06badceb0ea6e914a806d
SHA256 ad2cab207602e04b0987f2da6f3e1bd050e1608ac22558b078c5a15a7f615a77
SHA512 801d54264fd5b4d6bcb1e14e3381b8c02203f1ff2990fff880dfc240e3fd597a2dcb4924c91e785e9d1c5cc1bfef933206479b5cab681b9d0fbbb7acf6441d92

/data/data/com.alienmanfc6.wheresmyandroid/files/server_synchronization_status

MD5 b234f1b1b44be765682ff7d7448e101c
SHA1 7542e023b9af9dcbfbcd3188e8accf62e5bbe37e
SHA256 f91c4758326194d12adaa31e40111eed67827c442d7118e37aa5e6e828946c02
SHA512 2fa93fe54f216405b1db4f150905affbdf8cdb47f0f1c188481ffbeb8b211df1fbf9ad6d756eff91f0ce58ce85cae80c786d97aa5a6c7e1e7a751fcf09ba5721

/data/data/com.alienmanfc6.wheresmyandroid/files/coverage

MD5 b8b921d6a9bf52a926159e042c0d3356
SHA1 97cb386732128a93af028ce00e2b0de5559ef2c6
SHA256 8853129a30c9eda86851d66afa8724648e6c6c69caf0125d799ae830a5e4a678
SHA512 eae2f372697771cf9d42ab552a0aef8fb59e89f7203ada63e9d419c4e2e0932d2ab4fd203248a14dd6fbaa29ed63d7e3c6f82af26e334a6def349bbf1979c245

/data/data/com.alienmanfc6.wheresmyandroid/files/settings

MD5 27c87dcd63719c4fb0ffb621bf576f32
SHA1 336fdfb577b4dac1f4cdb7f574d6894bc5fa6dea
SHA256 94dee8c991212dc903a43f1364af25a0d875e7c0c3df67bffab053870b57c00f
SHA512 bff80550e760ed049081fa0fb18462f4a6adb44785e60c54ba7e93b0ace91d71d904efa35f51282b712667aa194166457f6875de795c593d1261d3f575fdd4b6

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-wal

MD5 9b5a578f31491b74a41e8e00bfc723e8
SHA1 9b56e717977b0ebc235a6e7122f63f4bc0be87dc
SHA256 8a9085d284cd656e5a3c5ca921bcc46f88afb21a76308e64896de83686413212
SHA512 9c631d9801680eb362aeaf3da067877bcb3ab8add597f0451c18db8065e58f85ed98605c911c827d06b95312df2b35075cfe3d244ad3a4262b5d66a0c1cdf9fe

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db

MD5 05006a1fffedaee743501cdee56907f6
SHA1 2093e31e4403fa3937414d9ffd92a504ed74ea20
SHA256 f9843d2ebaefffc18fec48a0b63695b12e83f50afbffdd165120ddf9bbf58d7e
SHA512 ebd5ce750d29ddf67ec51e1030ebc395e1b6aa25f25715e93a90d805dbe1c71805b544e8f9146fc45c178ea2415cf1ab1271e8b72d2820b5ee4f98b5d513a6ee

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-wal

MD5 7f7acdbe46ebbb4cd1de3a7d83be58b1
SHA1 0c0e8539fb8c2b840c3927ad09f378a2cf96c7a8
SHA256 07186dbfaecbcacab47c9867de865f7012dfcb41d19535737eeb7e633a99e3f3
SHA512 938edaa1253093c1fd75a72af5e9d3db8e3713d956a5898d93eb4c2f2e558a90ed8ed01bdbc2f34f9a736278ff493f0c5bd998de55c8b90b9000e2a8fbc1a1f7

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db

MD5 3922cb99ffa945c394d3e8460ea32d58
SHA1 698eeb1558baace6be2bd7b3ea629fe519bb761b
SHA256 86cc4395e41b0c89380c79874eb3385d2d5439fc61378d96a642d09f7fa38f2f
SHA512 db5f6cb1ccc02a1413efb8861deba972716b493df17ce68d4a1931e084709382782067e6273518a640dcc9aa1bec81c90d0c34d74080211001f95fe3c24f8f7a

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-wal

MD5 664641cce0ae0d7927ad08f1f9453f42
SHA1 76b04c36b2f8eb0401f73cfee1653c3f3f932af2
SHA256 2263cdee5aa984defed322c68ede2de8aa9558ed3de40da966b9584f60454449
SHA512 d719aff551c64e8e936eef5e496a08c2f4a90ef8602c3b2915b0aa60506b1b7f90cc61c5bead95d13bf331cb354c2d7e97bf4c979a026782e9b38ed7ee625355

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db

MD5 f4a15475820b2b21c33e6165e7175ab9
SHA1 ccf2d6261572fd26774ffd22c246c036abb1c7ca
SHA256 5b062442af3b3eade1863cf06e16f0bc71fd8fe043c8f1d2df77503522dce132
SHA512 beb6ccd5fa292afb7217cbe032ee46991b8a3846ebca462e0777e011dee88fccaf42c4c7cef361f3dd092ab2be29ea69fae01f98113cd0f0bddb2c4381eb235f

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-wal

MD5 e4462a0f634710b97c5ae90e750bad7c
SHA1 9c4e9142338eb93a1e21b20879afed5a242a0ebf
SHA256 670e122facda52422e7af45b29bb741893f99f0976365b13cf2c4223ecec76d6
SHA512 ad488398ecfdd34706e376fa5fe203f15c08041f81f433552b826c4e6d88aac362b07c3fdfd804c36078713c7c2824c96891ef84406c9db03eb55568b31f65a6

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db

MD5 bff9a6df502126f6954559163e9d63ef
SHA1 64d4727e9c0f0b187ee51f3dc3e7a6628b04f4be
SHA256 6237ab41d74c50fe3f86aa0d608c31fc12428776cd361e7e52c6b09c58d43863
SHA512 b98d637e44f63a47e8d3d82471a71bbcb300042881df9d724767ca975fbf1a24644fd8c5a7b955ba15b0b95d6a248d9b8fc2fba2c8cb94e0ce958e087fecebc5

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-wal

MD5 1557d1cea682bc155bddfa1e37f1f395
SHA1 df7875fad5d3229c8df795654dbcaaa4f46290ae
SHA256 5f38b898f5449d16b9aef30b58726aa1516371cb4f3e2d41252f71083640d56d
SHA512 d201a2e989905b7b12ad712bb5168d38db079e519e5e35dd417b30a2ea76d27c774b29c8363708e43230f7f39aa43d3e045e13cec93ba1efb806d24f3a499405

/data/data/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db

MD5 a1a24b47ce4a58a49c982a81ff846289
SHA1 69faac036ef0f29b0c4c0e89f1bfcb8357b60cb4
SHA256 2f0a99ba8d927ef83d9e653ad169cee72ae639b0e002394a8e45119206f2f4d2
SHA512 708a5abcb4d908d2842a028b76aa1eabf66a6114ccd580667198fec6c07444c7665ed257ceda7937f124e1c8f81325d89647783398e9ce3655f01018ae75f3ec

/data/data/com.alienmanfc6.wheresmyandroid/files/server_synchronization_status

MD5 298f2c15d62ea61a584b4500fd2143df
SHA1 d937151b7eec131502385041791ed1635c701f89
SHA256 94363d4079068c5b103f3d7fd19942f69d783974e7b97c50feffd75aa8621c9f
SHA512 4bd5743651ff79d82680fbc74912c30c07813575476757dcbcfd1c5191e2b21ec50e0b0df3430f98ea82d7af8741b87cfbf3acf0fedc7e4b7562e0c16bf93425

/data/data/com.alienmanfc6.wheresmyandroid/files/coverage

MD5 9e48aba6f4f0734d4613d40e081c06ca
SHA1 2ea298430e7230ea979624e50c9594a4110a5a8c
SHA256 b2c3de313ddbe97841fa2256287f0b03a7b86ceffe6056c4402eb6a114efe24b
SHA512 120ea561a6cfd4bb9a6abe3cfae5af109cb7cb066341bb61ce33ec6bbc6d770802c6753a3dfb5faf97d5be19ef79fb9678d917bf4f1701aaa864b1454f875841

/data/data/com.alienmanfc6.wheresmyandroid/files/settings

MD5 7adbb3690eadc800ea127b64475f8208
SHA1 e401530ba5e104a842bd53f1980892c394300e7f
SHA256 fa8ff22730a8d21ddb0744ff8d215e598062df80e49d052703f5ffc2556280ff
SHA512 6bea0cbad8ab0bd2ebf24523db8536614772659af04da6c9b6df124865e437b10d2a9fd7f66058d52ea433371c57cbc5bd81f005805835cce9b7660ade2c9ad0

/data/data/com.alienmanfc6.wheresmyandroid/files/should_attach_if_allowed

MD5 f0d3e2c136373efc547c9839dae404db
SHA1 6be3693b277815ccdc975fdca921cc46fb901417
SHA256 53ade896a4b756ca5058942117acbe4b3d069c77c64b75662da74d2fcc558e3c
SHA512 6a77842ed9d7b3d5f701ddd2f34f3c7d4264936d8ba98a3f8d4893bf44424480c36fd32416caa794a06ed81d4781f8b35fa9205fc92e428bae1df4e536dba03f

/data/data/com.alienmanfc6.wheresmyandroid/files/regulation_consent

MD5 a9ff21a2cdd26c58c88725c97f670f24
SHA1 2e0749c72b35846ae89e91201068d3ed18c575e0
SHA256 12b5b0e62b5b8f00ee370312f21b488f359a89fe54ff24e513f2fe9fa6d78447
SHA512 0173ccc0b0dcbbf6c0813b5f3f4bd3b0610c57bdb19b7aa85245ea1512bac1ab1228b64f4f4a424d2415d261f4efe1ec4a7d66a13155b9b5e62271a2d7e5315b

/data/data/com.alienmanfc6.wheresmyandroid/files/info_list

MD5 618032a0caad4ff190c7c043cba72bf4
SHA1 3465392139bf177a03715b6b8c56cda0f4376a27
SHA256 a7a67e2625ecbba1599d777231c57a1015fad2a68130e69c550c40ca04aab114
SHA512 b9d519cb7e4bc1c1edf482e120c0a11896e2ddfbf61c0855d9bbe9a8ebea685fa4221f25a17d133118cd2545be2524fd127b48c8563dea78b0aa9ca18ffc6199

/data/data/com.alienmanfc6.wheresmyandroid/files/info_list

MD5 c993dcf3b330a747e2004ba6df1162c2
SHA1 0b93446bd494d188546f4cf5ead8c545169e3572
SHA256 4586c16be6870a11c455638bc44e5ee6e0a5fc9b67d4a970bb98373c4ce12a41
SHA512 c4296cb23ad741efcce2d92f6b16907ad40eda443987649f35db503d7ce15ef1f59581c05a98d0fe11094bcae22de5ec6232ca11543c2c0f4c1464cd8babcf81

/data/data/com.alienmanfc6.wheresmyandroid/files/server_synchronization_status

MD5 ea4e4ead84589588ebbbea2a832429d5
SHA1 92e07d583cc436a8427a732c375f7e94bf828536
SHA256 54dc7360e4f3c0045ce8ab87e75120b1015dbc38611437bd0c11b4f3971bcc16
SHA512 e04d5494cb67536f05a26487090e7c7a24190e6dcd85af22197fbaba856db0e2002430b3746fc5ccd0c762c89fd9a91f952a19b8ba6532b3de211e440601677f

/data/data/com.alienmanfc6.wheresmyandroid/files/server_synchronization_status

MD5 100854ff712935ad119aa4e68b592a09
SHA1 d474226cac594276f970a4a488aee3d0d63dfa55
SHA256 75285ea6e5a478c9f496911781f9b443a88c468ff26e75cea50fcf42f31c98e3
SHA512 66c7ae0acb7e783b140228c115a386dda96912cd22446efb3d5a58acc8f0360170498ac8738a163e7d55c9cd363f824f49bf0b4ac12d79aa6e16965a765ca43f

/data/data/com.alienmanfc6.wheresmyandroid/files/PersistedInstallation6867939007517144300tmp

MD5 443a76fd7865bb01059897cfe3b4dd9d
SHA1 811dc3645cdff3bdb6d00ab5a5fc8e665f3e9733
SHA256 d789c714ffd83c118a8cf3ddc853a5dc52264d83676d66330aa73c9e7fb2e380
SHA512 576aee633273eef6e13309ca1f2dbdf685497f1c65667d1bfa6d735090d70a39a9007f6a70e194cac8d63087fdf5de3f456f6bff9a548fd382c8ed6befd4b854

/data/data/com.alienmanfc6.wheresmyandroid/files/facebook_ml/DATA_DETECTION_ADDRESS_1

MD5 26e37998b089275a4e2ed9c1be930879
SHA1 c48a03938a072a835e403c4f3ae5ca41835d9eb3
SHA256 b20563ed7cf7284fde09065b8fbfc3c215efc8679e82bfdbfcee39842a9f3f2e
SHA512 e9b888557deced806b6e4e91f229a643e5c50e6a9ab5744c7c30c1cab9b5582e858fc00024cb6e1a8bf90562b8c6cf48dac255668a15f72a5b8d7b43166cbd38

/data/data/com.alienmanfc6.wheresmyandroid/files/oat/audience_network.dex.cur.prof

MD5 981a5ac978d2f5aa237cd64bc2c4cf1e
SHA1 f2a8dfacbc057c48bcf4bfb4a2adb8e0128acf04
SHA256 64a9fe09f22bfdd172c132e34c8b5f1b0e92328b5934c927208aaa966f1dd6c8
SHA512 2a9a7247241a4d9913d2c3eb9659bc4549aebd0c747a57fdd5355a0d08c21d342ed148c9b9dc82f550fe1b5407202a166ae9fc2341a9577d55e2a7088589ad1a

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-13 02:16

Reported

2024-06-13 02:19

Platform

android-33-x64-arm64-20240611.1-en

Max time kernel

167s

Max time network

180s

Command Line

com.alienmanfc6.wheresmyandroid

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /system/app/Superuser.apk N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.alienmanfc6.wheresmyandroid/[email protected] N/A N/A
N/A /system_ext/framework/androidx.window.extensions.jar N/A N/A
N/A /system_ext/framework/androidx.window.extensions.jar N/A N/A
N/A /system_ext/framework/androidx.window.sidecar.jar N/A N/A
N/A /system_ext/framework/androidx.window.sidecar.jar N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Reads information about phone network operator.

discovery

Checks the presence of a debugger

evasion

Listens for changes in the sensor environment (might be used to detect emulation)

evasion
Description Indicator Process Target
Framework API call android.hardware.SensorManager.registerListener N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

com.alienmanfc6.wheresmyandroid

Network

Country Destination Domain Proto
GB 172.217.169.36:443 udp
GB 172.217.169.36:443 tcp
BE 173.194.76.188:5228 tcp
GB 172.217.16.228:443 tcp
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 graph.facebook.com udp
US 1.1.1.1:53 in.cuebiq.com udp
IE 52.214.60.40:443 in.cuebiq.com tcp
IE 52.214.60.40:443 in.cuebiq.com tcp
IE 52.214.60.40:443 in.cuebiq.com tcp
US 1.1.1.1:53 www.facebook.com udp
GB 163.70.147.35:443 www.facebook.com tcp
GB 157.240.221.18:443 graph.facebook.com tcp
GB 157.240.221.18:443 graph.facebook.com tcp
GB 157.240.221.18:443 graph.facebook.com tcp
GB 157.240.221.18:443 graph.facebook.com tcp
US 1.1.1.1:53 alt1-mtalk.google.com udp
GB 157.240.221.18:443 graph.facebook.com tcp
GB 157.240.221.18:443 graph.facebook.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.200.46:443 tcp
GB 163.70.147.35:443 www.facebook.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.200.4:443 www.google.com tcp
GB 216.58.212.206:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.46:443 android.apis.google.com tcp
GB 172.217.169.36:443 udp
US 162.159.61.3:443 tcp
US 162.159.61.3:443 tcp
US 1.1.1.1:53 www.facebook.com udp
GB 157.240.221.35:443 www.facebook.com tcp
US 162.159.61.3:443 tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 216.58.212.227:443 update.googleapis.com tcp
US 162.159.61.3:443 tcp
US 162.159.61.3:443 udp
US 1.1.1.1:53 scontent-lhr6-2.xx.fbcdn.net udp
US 34.104.35.123:443 tcp
US 34.104.35.123:443 tcp
GB 163.70.151.21:443 scontent-lhr6-2.xx.fbcdn.net tcp
GB 216.58.212.195:443 tcp
GB 163.70.151.21:443 scontent-lhr6-2.xx.fbcdn.net tcp
US 1.1.1.1:53 www.facebook.com udp
GB 142.250.179.228:443 tcp
US 1.1.1.1:53 www.facebook.com udp
GB 157.240.221.35:443 www.facebook.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.180.8:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 www.facebook.com udp

Files

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/com.google.android.datatransport.events-journal

MD5 baa1c9ff6f729284955df83d48ca6597
SHA1 bd5cda4b40792d664d639c0944cfeb9def606398
SHA256 e24d0d62689a6c8c570b1cbf17be1dfb08bb160a3d9e168d33214a5acfde3f81
SHA512 9aa06343629c3fc49ddedef41b0396fc6ccb43972928156cf5f9c3c1e169b73bf29039c940dc5fa94106b0d62ea9ff5ae947a07d5d03d5eb8993e7f0ee7ee18e

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/com.google.android.datatransport.events

MD5 814899dfe0346546dc397aea9d639c94
SHA1 68560a7e8eb07265c004ecb6311b8f7cad46bc55
SHA256 7e085556fb4061a129f3c6a70c138120b1f86ceb363d7d29eee3ad1aafddbbbc
SHA512 c367f5f81391097ef055403e69c5ed3df9f4fb8a9a3dde8d7db003f71ca8709b5ddf9215f12834a17b5f8a5e78d0bf4ffeba2f71a99ad9d7a8c819d033a5fec9

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/com.google.android.datatransport.events-journal

MD5 845aea1004b58485560370d92208c5ce
SHA1 6e6db3665d83e08b7c614834af9b5cf700424f14
SHA256 162c379fe8200361736b4f0916492c31035d00304821c7a9b5029730070ee5ec
SHA512 4a168add9ef66d66ecb60f0605129a2d255377c5bca3f1dcfb289f2430c87d2495e0e8e44293bfd2ed2a7a035afb809fe4be5fd18b93260180603ed22118b360

/data/user/0/com.alienmanfc6.wheresmyandroid/[email protected]

MD5 e8267ce8fc81e9d1c7099d480486d960
SHA1 0aef0c04cd5ebe6f4fde6e2526937b7c64f7d109
SHA256 6233ba1598115f3646b60b99e1556ce1ff0b66458c67620cd2a94fd9a59140bc
SHA512 a1da017e8f0316a7f391b49c10cc94c877c425bc0f5320ddacb6f076ecb7dfe3c6132a74d74d025e25c038dd4f220811517c4e9eabbf542836080b83e182ba2f

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/com.google.android.datatransport.events-journal

MD5 97df8bb16fa0f98dd573ca27df212b71
SHA1 63d9657e9fb8ab05ad1d2cfe498e113686e7bf98
SHA256 1e93f82fde3f336a64b2bb09287ee1285bf0c6cfdbc55833d36a14672a40ade7
SHA512 98d697aafb9cb781ad6317be553d06634364739b636ea0a8ca4be406f32198ca0a1c18518e2a2c8cc30bcc7fe2927f79fccecc779019e9f8bf592c66453b54e0

/data/user/0/com.alienmanfc6.wheresmyandroid/no_backup/androidx.work.workdb-journal

MD5 13d15d3a19eb73e21f727e57f4fff5a5
SHA1 665088427f97b620fc68906496402b702ed4b346
SHA256 844787968bf63779e651222443fb42bea887667d42fd8673a82c4d034b089b81
SHA512 682660c9c6f3aef6f86f3b7a928e5857f436aa6d196393c30d58806822b178bde2752265e45441982af4d98644b0bd66c0f6a3eb2de602e9c6779edbf7456970

/data/user/0/com.alienmanfc6.wheresmyandroid/files/PersistedInstallation169163345373911622tmp

MD5 a997fc89cb682064204a23d810426814
SHA1 a2842dbda5247f02f744c40dfe9c2e0fe72e6417
SHA256 4e716060f4e66c3d51088ab24b9c299325da8e82d73c83816a1abf8286e8941d
SHA512 0eb6397cbe262b4349a5942c627e140abdeecc60c0ba9680fcbf34349eef219e0a4f932f12705c734c1255217a51ee34dd9ea12a20b80734c5f61f354f5b4db1

/data/user/0/com.alienmanfc6.wheresmyandroid/no_backup/androidx.work.workdb

MD5 0eb157e1a86d4d00aa601dd2f6ff3ee3
SHA1 fee434f784e73cc7916322e949f727caf8363102
SHA256 b9a8194b71a046e8c0eb30995827b582b4bea834f630a5df2483b778a7d7d8a4
SHA512 b9b79b8c3af8a3f140df230fd89e95206358ba50ff214e7323a2dbbe2937b795f970e588302ffd5d721318bd597ce0a27af26d6cdb07f45569c30209845082a8

/data/user/0/com.alienmanfc6.wheresmyandroid/no_backup/androidx.work.workdb-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/user/0/com.alienmanfc6.wheresmyandroid/no_backup/androidx.work.workdb-wal

MD5 a46f1ce8d84205648b89c1cef6e8c3f2
SHA1 fecf55f81f7089b5bb6357b7cb516497de1eacc8
SHA256 876bbe4a1ab46a4f273698edd4936edbbce20789aefb57e391d0acf205dcf4a8
SHA512 e6a41c6a265495f4469f549779cf2a54481a8b104bb5c8219ee4be72e3074b3520601b2815b36ddf6053e19f4fd850d4345dded168913ba20cbd73c40a9a1874

/system_ext/framework/androidx.window.extensions.jar

MD5 3056e1bdb7d4e19789d0319eff484bd0
SHA1 6791ae47aa9466fe0bca27ad6643f846853bbee4
SHA256 8e6331a07c9f2ac139214c527dcaff2c82d126bbe7bd3420cdc36d6a8c9204b0
SHA512 c790980fd68d9f89e32743bc28846807d5e5947c555f494de47714dec5cbd0c08d81c3260fa463759d1b17a953af3c44ec30b14fb08bf6b29db3837346c9f658

/system_ext/framework/androidx.window.sidecar.jar

MD5 29469324e59dfcc052f24b5af4e7b2c4
SHA1 10c1e17ac6f598037bb51baa07945663645de4eb
SHA256 9195dc6a1c75a841384050240dfc972e48178964993fba6619788625f4b40d1a
SHA512 5e27c2b1431369a248298f2f749136a575005584f9999f2a4c204a0c47adce2e33c8df9f058bdafa1bde1c99e46d175560cedfcddcd8581718ed1d9973c37cc2

/data/user/0/com.alienmanfc6.wheresmyandroid/files/settings

MD5 9e329ba70726df63aa018bcfc9ab0be9
SHA1 9cca7ad4974f60f0e4652d4262e249d2aaf69954
SHA256 de1ef3bf255414323689a019375f9c4c04b8c1c523bbfec739630cb600d88f08
SHA512 8bfed8d7c84d975a794402ead9f39bdf7e9053db9f9f7aa557d6f0c73981eca3a81dab097c0723df2d0f789faa1eb6ccb184715c7850594f05d31c772de482ce

/data/user/0/com.alienmanfc6.wheresmyandroid/no_backup/androidx.work.workdb-wal

MD5 326b2edc5ebd48e5028dcdaf299b1a7e
SHA1 b49a38fa5fe60b77ee22755b76b9936dc892caea
SHA256 08e9e69792e08aa1d5e3611fae1f77521f1559f6129104c76289db2f47a3ce4d
SHA512 b55c224d7a53a91ccaf96549e55f82d888faff327dffbf07a0bd0bbc89d2c7df76a06847d51f407a132937552e45316e0b529ce9d22df9723736a4af912f4505

/data/user/0/com.alienmanfc6.wheresmyandroid/files/gaid

MD5 ad2442898b8d9c410a77e892262a6d49
SHA1 435b709e65039d422aeefd22ba36b26ffe75ee08
SHA256 e74838d9b53e0b52ecea50db990cce9bf514fe0f5afc223922e8a5ff019fd637
SHA512 db587b74a52164a17cbc2b4e905d05a16baa3fbace71a493e134e2cbe99741ebd641446c6908ba6d88e439eabce87e2f507ff03bd867cb57ef5cf01d7715ff25

/data/user/0/com.alienmanfc6.wheresmyandroid/files/server_synchronization_status

MD5 b234f1b1b44be765682ff7d7448e101c
SHA1 7542e023b9af9dcbfbcd3188e8accf62e5bbe37e
SHA256 f91c4758326194d12adaa31e40111eed67827c442d7118e37aa5e6e828946c02
SHA512 2fa93fe54f216405b1db4f150905affbdf8cdb47f0f1c188481ffbeb8b211df1fbf9ad6d756eff91f0ce58ce85cae80c786d97aa5a6c7e1e7a751fcf09ba5721

/data/user/0/com.alienmanfc6.wheresmyandroid/files/coverage

MD5 8c0fb800bc2ede409090cbde2ba48ddd
SHA1 3d5a35a055df8d9b86a8e126933a70f7c4ad5f7f
SHA256 d60b2b3fba6ce2ea1f0f0d6c280d946ef2c4b1bcfe563ce5c800e02d3fb1016e
SHA512 9973aa41d2a1db62841eb3b00a6a1c35aede930c5dadd7ec8cde6500cb6fb919fbf2841b561f77f81853cac630f51b34f69ef1852457d92c6f8ee65d97b4b721

/data/user/0/com.alienmanfc6.wheresmyandroid/files/settings

MD5 27c87dcd63719c4fb0ffb621bf576f32
SHA1 336fdfb577b4dac1f4cdb7f574d6894bc5fa6dea
SHA256 94dee8c991212dc903a43f1364af25a0d875e7c0c3df67bffab053870b57c00f
SHA512 bff80550e760ed049081fa0fb18462f4a6adb44785e60c54ba7e93b0ace91d71d904efa35f51282b712667aa194166457f6875de795c593d1261d3f575fdd4b6

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_analytics_v4.db-journal

MD5 bf196c1ac8dba4ea20036b409ee3d513
SHA1 809e13a7359cbab8575f8070fd15e43d279f31e2
SHA256 3fdf28cccec8b9cff38e3b54fb0be18563c8b9a63d99777d0bb7ec86fe9b92ff
SHA512 a12fdd21d8131196c18346dd09911af1e1b7755f8889e075cdd05f0bd01f3842d8aa2ccccee4c4b50766a54b49eb44a908c5fd4872c0048d120dfbcbb4a14ce5

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_analytics_v4.db

MD5 4869176d1c8023e90ec0069bc38baa30
SHA1 6c13afb2c419bc86d402bf5e51753e681d31f6f5
SHA256 05d58890a2178cb873c0c68ecd3adfd433650336dfdd9fe30a4dfaddfe6e467a
SHA512 c0886fc28d36241d4e0768504275caa72443740a911ddbfc709080e2485da642cc4ca1263d9186fbcff467d5725bae18cee84a85f2568ca322c6362071e48865

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_analytics_v4.db-journal

MD5 0db059d0950e1c7b327490600caee6fe
SHA1 f257d13aa768934c7d7819292b535c9d6832dcd4
SHA256 75d1cd523578b86d67130d44b2c67da5f80a64af78ecd21d66e36a40f3a4bf0e
SHA512 1a4ee4a31d4eb1f07bb1a09cd5b5f0299b5fdba0abb2d56a69b5dcdb35905a4d012cb71654aa984a660d566cb7d79e3e265616f3697c26b27aa7180024e80b37

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_analytics_v4.db-journal

MD5 4b4869d2a55b6fb55b33f4a0cd6e8a64
SHA1 6d9fde7f6c348b84973f84757c40137ad46dd393
SHA256 57edc971da9ff1f16ea0d121b7257e142ac5e1dc46dd440e8c64259870e0ca30
SHA512 3596ea8c420b2c36b1ac5a3900644ae907fc01bdf940018e266b4004b4fde85c1df27b9c868ba716f0c8341603075b1955259c8c1964ef68032a39edc4e906d1

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_analytics_v4.db-journal

MD5 94412b7960bbdac624462861aac27656
SHA1 8c9d7ef468da2d685b7905e4a48215b78f404b8c
SHA256 f354bb1067a667ec92e03ed708003239a1ddb8afc8482664020302671e430cf3
SHA512 c39505dde4b16a20b7a3acffa32b8b5813b70ae0081719ea2b25190da1488acf5f5252ea7693edb147c75e1012097440523e6a87a6f5c2c3d9d2fa91aaf9d36c

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_analytics_v4.db-journal

MD5 0e6bf781987a9cbbda18276e3cedf49c
SHA1 fac4693cab7b031af4e8dc76f49968b1ad7cfd96
SHA256 70999e10c061ccadf6e9901578defdeb1d2fa80b0b48004a6035b5a53b6932de
SHA512 296d858e14ca26fcbd9d2463b129152261fc011f0f507772a0de00032a2cd931c773892902f146a550caf2d3b0ccf324d6ad7c1a5d7d2add8f158423f2b09441

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-journal

MD5 af6e7f985f172eb282d80e102f30f1e1
SHA1 6f21714d6a97e97eb0b9e2a1e877c43d83882642
SHA256 f248a8b64cea15e678ed0a0b4e32d9f608d171bc7d4623901628ecfb165bf6e9
SHA512 b0302c01d67c6398d3b597ee6ff081910244c475af1850e314ec59768140445f99d2ba173cf49bd2cc9e1f98d966b4e7c0847d8a8783a9ea1f2ce091bbe930bf

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db

MD5 62ad4a05cbdca7f47b3206b7dbda487f
SHA1 4f4044cef7b7b1e5c6184ed9025267fc92bf0cd3
SHA256 18b909096c7c61d51ab076ae8e562effb0d4ada28e2a4ecd0e6b88ef58f6b2a6
SHA512 0936531ed1b2b356a247123200739a43cfc765469ab47a424dcd6e3d1176092a212b0a28591d07f8c2d0cc9d2e0eeddfcea8dde314c2f9343783c61075b071a6

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-journal

MD5 3d1f3b6f3145c2a841bb0ca45bfbae6d
SHA1 86587c475456dac424da67a67ababf05e9528853
SHA256 1ff9f05b1a92a7018594d1340f462b92c244a9d1ff2be822f2a6dd530dbf4d1c
SHA512 d540560ffe5f17333391353b2f688508c68d19135afaa902ab79ca7b11b74a7a031cb3fcc5c0e46103b8d021aaf65f872d0ad50235193f1306867e5c4ba87865

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-journal

MD5 7f43dfa576a93d317d6e7928de840a33
SHA1 9a0b025bfb6997016c1c161f47447b298ff06c5c
SHA256 f4dc278d1ec05dc7e63bd27bced4fd0ce8b0e11ada752abd2e26f9ba8f889dd5
SHA512 eeb0e2f0a9f8321f8dd137a3c6569239bf91a8f416aa2319749860076d91f7903818f2a999f3f2e21a04baec4f978e792c98a0f865b7d46b59b7e92138faba73

/data/user/0/com.alienmanfc6.wheresmyandroid/files/gaClientId

MD5 fc8a26016c2e79adffdde69ab5674239
SHA1 235a7c682e60d49b10865667cbe0e80db23f23d5
SHA256 b56cf317f2ecd15f91017c2f01a7521267252c9fc4d12edb0305a56133d0f786
SHA512 d5eefad55f9bc261b9b4a341ad6c318af76f07db9cdb9d809cf8a8c48d20c3312b2a134c6a51594156cac1092e8f49f37c273382b316cb199b99d584d1d6ae5a

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-journal

MD5 188f1fade955288e22a9cc66bb18b44d
SHA1 e1a384d0d9657eb28e07f6afa3d429758a634125
SHA256 07e45b60cc6716f435568b79d946a10911de25eaed77a80605b761338ef6623b
SHA512 dfb4dd89931ca3c0fae3121f17f27747494fa570754c01edce70a8614cd4b1e37f717b7fb0f63790b1e0f8f37d70091a1b692eacf9c4bc5ea923f2376c515419

/data/user/0/com.alienmanfc6.wheresmyandroid/files/server_synchronization_status

MD5 a42582dd04b8af0ee34e2d5ecea49454
SHA1 39fc8c6126b6a18010e8dad19d27f02746ce10f7
SHA256 6d507386cefba47e11c85d05b2451c67109e592ce44e69e81361a89079ea19cf
SHA512 35743b0afecb2ad6c204fba3c1d96e51d16d06a2557ad94c692b90dedbcfeeb75e6c39ddcb635502c4d57b0739732740b3b0d6d02e4b4f89b64507d4e1736dbc

/data/user/0/com.alienmanfc6.wheresmyandroid/files/server_synchronization_status

MD5 ea4e4ead84589588ebbbea2a832429d5
SHA1 92e07d583cc436a8427a732c375f7e94bf828536
SHA256 54dc7360e4f3c0045ce8ab87e75120b1015dbc38611437bd0c11b4f3971bcc16
SHA512 e04d5494cb67536f05a26487090e7c7a24190e6dcd85af22197fbaba856db0e2002430b3746fc5ccd0c762c89fd9a91f952a19b8ba6532b3de211e440601677f

/data/user/0/com.alienmanfc6.wheresmyandroid/files/gaClientIdData

MD5 f6b19ae5ea59af29db4a5358a12a6a75
SHA1 85101048bb5068a9c34c1621fb669263b587a668
SHA256 b06817e10b9032fd1f39a6544dd8f852529e812ebacab71aabc743431711349f
SHA512 fcbf7b1ff7fbbcc4fb506ea3bb7b79340a88cd9fe6f8ce67bb36a9546ff4581d7ab8b67f4986556f320da0ad4c0c3b313126331e7b0eb157ab1d827695e5483d

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_analytics_v4.db-journal

MD5 6f8c6cbf14b1c9f22fe5af3ae3ebf257
SHA1 283a8c4a8da0ee931d15ee11cda0d74003e3bb0f
SHA256 6852a7a8bec3a5c452a9ba0a46efe439ac0d49fee6e76ec5a11159de9a880762
SHA512 46d7eb1922a302558d84496fbbc0f878e277d2f35cfbeb10b1281f3a8ab8964abecdf9228349d504c6421d2a7fbe39875dd3fac56a27e3b9609cb1a029355706

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-journal

MD5 3590129609e71875079e33479fe05b7b
SHA1 e741f2fa55788c339f8c89898d7d6e1a77fca614
SHA256 80c6ce59bfcb4c105c4206180289a7ab97d553aab587d53c8c2a4d5cedbc247f
SHA512 fd39b9565963963defe18c4d69e244fa85cfcedfaf5da58da05ecf2791cb9cc6dc7fcce02b223b6af805ec5a5d32d35919763e082bce52684e4b2e15f6888fec

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db-journal

MD5 7dd70f9e81b4b2f5eda363e716018a53
SHA1 3557dbd1629ca40405f30cac51bca95091840d33
SHA256 40347f261ca26185a60bc984ad6231f29063462225eec04bc77f903ea9583697
SHA512 1cd00d3d84bc7da309da2f7acd0b53349c95144fd25672746bbbecf1c0311aa0ef89a5fb9ce260368c490099eaa4f11a735c0214a64f58a810f96461bd1b70d7

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db

MD5 1664d5a81ad629cc42fd3356aa064154
SHA1 003d34ffbed4ea89891aaf0610bb20507829793c
SHA256 33b3dc25f980e49cc0fc8c1c1509a230ed1cd370994dfd3c2437fbf8c51b6328
SHA512 0fc033d2bb9f7dc53db7c0d752c4d04fa97e0e501c14ef99ddbfb503e871106c566d5b957873f2f8182e14a67b824b2131cd79633aa511416833d1ac9b592e58

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db

MD5 b94156c4c8e8a6481f5599481864b13c
SHA1 35c567537bd16e2e997939c951a2ceb62d395297
SHA256 b3f1bf2bc50a1ae50715710a8534bc9a2cab5cba6eb992f4447ac0c8d1dab532
SHA512 0307800c5cf0334564d7f4fc1b412fc82b72415b2a2489f775f3bc926afdc68e6227aa016ba51249eac5dab1f37f23bc39504579600d3a9228e7b58c9d0e9399

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db

MD5 2c306368aae2d86bfdbbc6f3514d52aa
SHA1 ec70feef97bcfc91fab29bc05127db70484d416a
SHA256 e9b5ac185b3f1d217fb73b1cf515a96de179a3156cdce17aa9f925ea4a07619b
SHA512 6452d670e61aee664494689869fd29ce21982f4b799c531f62e786c1265c8aeb40c239d20663d5df11352b7010adea155f64b14320c8c95456276d4ffd3ce883

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db

MD5 bd5592c16c1152362bea51add641681f
SHA1 9cf5700dbf08156bbd2454daa9fdb718529f46c8
SHA256 24ca763f2c8823ee801c14090c65197d75a6e8cad7dbee13ed3faf2a9efe67b0
SHA512 c9d54b91ba0976432679135496dd7ce639261b03f0cac5969af16f78981727daec53189e30d6d1adafc1d2cc6af8bff52d4c8e9f17720d5bec14dc58ea94d5fe

/data/user/0/com.alienmanfc6.wheresmyandroid/databases/google_app_measurement_local.db

MD5 de37948cc6d377da51619a75b94ce6f9
SHA1 c4a1c2645ac30c5e113eb6b4ea2f6754feaf12ba
SHA256 6e61aa9c8dcc4f1d5e9e48755202261efe29c9eb150609d4b33f3b825f0b674f
SHA512 01470ed396483872caed3d9f7b11314be807f9783de09b5cb83f832e1fed2a1e9253a45b24fa55cb8b6f39036a004132018be592b74f8bdde5bcad95a230ab1d

/data/user/0/com.alienmanfc6.wheresmyandroid/files/coverage

MD5 9e48aba6f4f0734d4613d40e081c06ca
SHA1 2ea298430e7230ea979624e50c9594a4110a5a8c
SHA256 b2c3de313ddbe97841fa2256287f0b03a7b86ceffe6056c4402eb6a114efe24b
SHA512 120ea561a6cfd4bb9a6abe3cfae5af109cb7cb066341bb61ce33ec6bbc6d770802c6753a3dfb5faf97d5be19ef79fb9678d917bf4f1701aaa864b1454f875841

/data/user/0/com.alienmanfc6.wheresmyandroid/files/settings

MD5 926bc154b6cf9c83dee3c266c74c5088
SHA1 035f744b37568f33489f0021b0d8c4d5bdf6b388
SHA256 7b8fe2d722405f9bd4cc255dfd120c525c9bd30d04f81a929ae0f491bedf7747
SHA512 69d6f3eb79d9b008d287cef1c945b14f26817bd35cc581eab8f61618c9a245bcfd3ce0afeae3ce4298b70addbb094618cb419b7df63fca2dfb854d6fb34638b3

/data/user/0/com.alienmanfc6.wheresmyandroid/files/should_attach_if_allowed

MD5 f0d3e2c136373efc547c9839dae404db
SHA1 6be3693b277815ccdc975fdca921cc46fb901417
SHA256 53ade896a4b756ca5058942117acbe4b3d069c77c64b75662da74d2fcc558e3c
SHA512 6a77842ed9d7b3d5f701ddd2f34f3c7d4264936d8ba98a3f8d4893bf44424480c36fd32416caa794a06ed81d4781f8b35fa9205fc92e428bae1df4e536dba03f

/data/user/0/com.alienmanfc6.wheresmyandroid/files/regulation_consent

MD5 aade2ac295c9e549d216d1ccc6c01b4d
SHA1 a8d10ddaa65a82e62412dab253fe65a849ddcad5
SHA256 2142737f9960c45d9781c3c979b975c28f2ba9ec3d5c9433e70007b8c08c6db7
SHA512 79436bea2d3923442d28c4f409afbc48351b61deb73b93cbb9a24e097df8be2b995d912f9163b50a5ab1016b0be38d483237c00ae418b875dbdc09f10de9a077

/data/user/0/com.alienmanfc6.wheresmyandroid/files/server_synchronization_status

MD5 100854ff712935ad119aa4e68b592a09
SHA1 d474226cac594276f970a4a488aee3d0d63dfa55
SHA256 75285ea6e5a478c9f496911781f9b443a88c468ff26e75cea50fcf42f31c98e3
SHA512 66c7ae0acb7e783b140228c115a386dda96912cd22446efb3d5a58acc8f0360170498ac8738a163e7d55c9cd363f824f49bf0b4ac12d79aa6e16965a765ca43f

/data/user/0/com.alienmanfc6.wheresmyandroid/files/facebook_ml/DATA_DETECTION_ADDRESS_1

MD5 26e37998b089275a4e2ed9c1be930879
SHA1 c48a03938a072a835e403c4f3ae5ca41835d9eb3
SHA256 b20563ed7cf7284fde09065b8fbfc3c215efc8679e82bfdbfcee39842a9f3f2e
SHA512 e9b888557deced806b6e4e91f229a643e5c50e6a9ab5744c7c30c1cab9b5582e858fc00024cb6e1a8bf90562b8c6cf48dac255668a15f72a5b8d7b43166cbd38