Analysis Overview
SHA256
050b74a478b84a001b13b077d41e8c47aec8e9ba8c831916bd0bfae831841c28
Threat Level: Known bad
The file b83df944ee90b006bd565c1d2c24a48c_JaffaCakes118 was found to be: Known bad.
Malicious Activity Summary
Irata family
Irata payload
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
Queries information about the current nearby Wi-Fi networks
Acquires the wake lock
Reads information about phone network operator.
Requests cell location
Queries the unique device ID (IMEI, MEID, IMSI)
Requests dangerous framework permissions
Schedules tasks to execute at a specified time
Registers a broadcast receiver at runtime (usually for listening for system events)
MITRE ATT&CK Matrix
Analysis: static1
Detonation Overview
Reported
2024-06-17 10:54
Signatures
Irata family
Irata payload
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Requests dangerous framework permissions
| Description | Indicator | Process | Target |
| Allows an app to access approximate location. | android.permission.ACCESS_COARSE_LOCATION | N/A | N/A |
| Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. | android.permission.READ_PHONE_STATE | N/A | N/A |
| Allows an app to access approximate location. | android.permission.ACCESS_COARSE_LOCATION | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-17 10:54
Reported
2024-06-17 10:57
Platform
android-x86-arm-20240611.1-en
Max time kernel
43s
Max time network
184s
Command Line
Signatures
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
Queries information about the current nearby Wi-Fi networks
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getScanResults | N/A | N/A |
Acquires the wake lock
| Description | Indicator | Process | Target |
| Framework service call | android.os.IPowerManager.acquireWakeLock | N/A | N/A |
Reads information about phone network operator.
Requests cell location
| Description | Indicator | Process | Target |
| Framework service call | com.android.internal.telephony.ITelephony.getAllCellInfo | N/A | N/A |
Registers a broadcast receiver at runtime (usually for listening for system events)
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
Schedules tasks to execute at a specified time
| Description | Indicator | Process | Target |
| Framework service call | android.app.job.IJobScheduler.schedule | N/A | N/A |
Processes
ir.roman.softazarbaijan
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | membersent.ir | udp |
| GB | 216.58.212.238:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| BE | 173.194.76.188:5228 | tcp | |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 172.217.169.68:443 | tcp | |
| GB | 172.217.16.228:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | 4.ifcfg.me | udp |
| US | 34.172.225.131:80 | 4.ifcfg.me | tcp |
| US | 34.172.225.131:80 | 4.ifcfg.me | tcp |
Files
/data/data/ir.roman.softazarbaijan/files/unsent_requests
| MD5 | 0d210bfb2a0e1f1b4c082a6a0f79de07 |
| SHA1 | bb8ed9e364db79d1d9f2fcde3f15091893222faa |
| SHA256 | 988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d |
| SHA512 | 536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1 |
/data/data/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | e5b7a6fb7ea3c0554fe00d6a72852252 |
| SHA1 | c2579bb11e0cfed7bbcd9745464f1d8ec2accfcc |
| SHA256 | af812b5495f2ca66b024c54b7f3e6abdebcce2272ade7ac9925966a9ca5160a2 |
| SHA512 | f69b8edb0b8d95b0f11ea80deb30edf2da1bfec7ccba3382bac61c42a1e59ae76fe09523b15fcb3683d0108b59e9fdfb7ece311f499fa44daece0711156572b7 |
/data/data/ir.roman.softazarbaijan/databases/evernote_jobs.db
| MD5 | f2b4b0190b9f384ca885f0c8c9b14700 |
| SHA1 | 934ff2646757b5b6e7f20f6a0aa76c7f995d9361 |
| SHA256 | 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514 |
| SHA512 | ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1 |
/data/data/ir.roman.softazarbaijan/databases/evernote_jobs.db-shm
| MD5 | bb7df04e1b0a2570657527a7e108ae23 |
| SHA1 | 5188431849b4613152fd7bdba6a3ff0a4fd6424b |
| SHA256 | c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479 |
| SHA512 | 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012 |
/data/data/ir.roman.softazarbaijan/databases/evernote_jobs.db-wal
| MD5 | 71f934913a9cecc2327796ae7df478a2 |
| SHA1 | 3b274bc3b1a3482c27de5af0102339c3bcfbadf2 |
| SHA256 | e13fb11c12065506cd1947fece81e87b642ed449d07f31baf6cc9c215f39160f |
| SHA512 | 8c7f4c65e5b4f2d9af9174ccad3aa02bb53f54739d18bf6e9e6472f1ce6f0a623623e8fecb49cd48e01b27271fa1fab2c529d4166d42fda905e8a9be085e15dc |
/data/data/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | 8a40f7a8a6f8a58d6418a3ed668c6edb |
| SHA1 | 7fc8da5d46e2f79339aad2b7361c07a3a0203059 |
| SHA256 | 4e094d47729e645c20a526be6e36747a42fa78c8284effdcb279b35eb3d91975 |
| SHA512 | 902791df92282c7bc2ed29403f9516531519cb2c6bdc2a41b8d18628193f0bb638685c0700e0e44a2427096599e72592354def98867c3b52ea9980a5d276dc73 |
/data/data/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-wal
| MD5 | 00a20bb1c027bd17abec8d3dea66d8b9 |
| SHA1 | 10f63251a4b91133a8db1107a1a82a40542774c2 |
| SHA256 | 2c56310d3e10b618138ee823844b3156435c486c658e7430bcdedb786d26fbd9 |
| SHA512 | 5ac4b14a2d40e36a09491341144cd05d42d57ae23d72e33b42d5279550c288096512ae6c84f3db57c50776ac8dda26f8e60d21e568d2fefb7d05d332fe79e683 |
/data/data/ir.roman.softazarbaijan/files/roman.db
| MD5 | c249215298e77aaa98ab3b2196fd9125 |
| SHA1 | edd61d32bae06525c71e5f36df2c1efada58ac08 |
| SHA256 | 2c230e6afed8a3cddaed203fa2666f7b3a57af94a177a2736a0c985062127756 |
| SHA512 | b5763d92483ca5cfb9b0e8ffd7608825f9a50fb4e5f921d0f4628706e07295150845e77a54a5cea2df54205e151cc6e2067d2bf42ec9ebe01b78b7ea4636a7e5 |
/data/data/ir.roman.softazarbaijan/files/roman3.db
| MD5 | 6dd276367d44d4093e91dcad5b15750b |
| SHA1 | 995191c12277b5f50e3d1ce2a055184761efd0e7 |
| SHA256 | 48e43010c42015aa3fd83fc5ad86115034ebf68f4a6f2b2617d4cc97ff4c9802 |
| SHA512 | b9e00c5092b99a261d6ea8a272953c0d81ade35a3772ceb910c257a43679fcb315d82489b344afd66b996010efd4972d858363597a113a97552e4f2a2f3e9eed |
/data/data/ir.roman.softazarbaijan/files/roman1.db
| MD5 | c6a498509c94ae37c6749580cd8f6a2a |
| SHA1 | 20bf4a6186c03b3fb2cf9bd22cee140a46eb5cd8 |
| SHA256 | f7f41da14f2da7af1aeece0214098d5f0bcd18b0cae04c07d2945326541352d0 |
| SHA512 | 9866a55052725ec25829f1693d40bfa5ee19ecf12b53e4ce2669d699220dda01a9d87d04b188d1144cd9a79dd6450fd217be19b4110f352d504a85d5d92dad1d |
/data/data/ir.roman.softazarbaijan/files/doarezg.db
| MD5 | 0788b95978101e661518313e3d53a08a |
| SHA1 | d939b5d60d114edd86708d157545944f98a792b1 |
| SHA256 | 8a58441465047a328f3e1bd8e1051c1e7988264507121dd9f6328cb735b29509 |
| SHA512 | 387e6baaa8140fdb3cfcf810b75f05ea3339fc350b7e3233d50dfc6ec0a5a2c4c9761d203b2cd32f0d9b4b17a37181506b494143e63666d5c4ee4df0798559f9 |
/data/data/ir.roman.softazarbaijan/files/banner.db
| MD5 | f649f71595dc604297ef417c34edcd85 |
| SHA1 | ca0fc1700dee356296777e47e44141d871cff12c |
| SHA256 | af98d28ebef44745c24fbb88f1dad8b03a60b07a9c4e76c175954d9ee59d035c |
| SHA512 | 24edf5a3006f0693a73ee63136b54c969f5a5449a4c180e5c523b87965e3a15a3cf3d1ef069c713a92dc66b8f18aa85d6a0db89ef49d00ce82e6a36a48de4690 |
/data/data/ir.roman.softazarbaijan/files/roman2.db
| MD5 | f1f47444e47f5cd49c71141bd144da98 |
| SHA1 | 9b1961a05bee23f69acc5b6ec2e5ed7e31a27ae7 |
| SHA256 | 8099846cc28d2afe36c9d8f0ff37103227859d7645f8dfd410726b96fc882f66 |
| SHA512 | f3314294feee3967de1396c7f2ced53ab85befac697f5ef289eca1076cdd1b29be7b4fdf304bc472f9160af07cd75b948421a331dc98ec8ce1065075587fa033 |
/data/data/ir.roman.softazarbaijan/files/banner.db-journal
| MD5 | 94075d236124b71cb3a7eb8e5c502bb1 |
| SHA1 | b9557248dc19d7a9c8147b8b01932b657fb4c61b |
| SHA256 | 163839dad385dae9627aab45c254ee363d3260005f05160d59e55c4018689510 |
| SHA512 | d19480b736464926ba4c4273552506c52f8675ef1461162d262b0e6d98d4f5a0404d2ce40365e9d153f6cf405fa16ac8930041c9840582b854b044d28307097d |
/data/data/ir.roman.softazarbaijan/files/banner.db
| MD5 | 41f34e9f54716c453d069d04dd1b6f9d |
| SHA1 | cbb90887bd0151dbc3e29665f97ebfee6620785d |
| SHA256 | 94f662d2cd4f251840c8456348e8efda4ae9a2af5c3891e38db9cea2f92df0bb |
| SHA512 | c454ce6f8d3b81cbfc8689e616502f560b01610480042de8207a0bec5f9d442b92e26d88804b83467deff574e09a9a0fc67e2258fc581461bd6dd3e5ade522fc |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/journal.tmp
| MD5 | 37e8e716e0e2f4a0b05cd9571d95b84d |
| SHA1 | f8d068f6931707bddb8cd69f706f2224ad1fea3c |
| SHA256 | 7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca |
| SHA512 | e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6 |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/journal
| MD5 | 627031eab76b522e7b43579be65ee891 |
| SHA1 | 2c9cebea90823216b55ae347f59c72c02b67bdc7 |
| SHA256 | 65cbd1407e1898a30fb7b498a9548b1a885236d047739fe0cfd2e302be6decb0 |
| SHA512 | 182073324299a5a06527d81e75e0ed876d2407ed5fde53677955664f7114c7b46cb69048b93fadf9e40e97a701ece4c8932cd50b33bc8894b01cbf5db51ea938 |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.0.tmp
| MD5 | 9e0096f69d5811a8efd00d73f2ec836c |
| SHA1 | 1e819de06e7b174ba0154c04554e276a19ef6f27 |
| SHA256 | 83835435d88960c312edecd392f0aa8fafb9aae05033876111a41a8d80df74c7 |
| SHA512 | 53bfd42620d6900b3c1e59994fc83bfca19a29b4b83d9642279194599b0f89b5051a9e016b88fee2b7926a393534cf4036584111046b8c8153707b9f6bf8aad5 |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.1.tmp
| MD5 | cc4fcd9a6faea70292a65be057cb833f |
| SHA1 | f874ece1c8c563490fe52e31111eb1f8a3917a65 |
| SHA256 | 1b254fa832a6cfd93b74fa38ddda79750fc0c6d4333309e9adcb301d25d06fa0 |
| SHA512 | 34c1483c34f38f60785b9d75e88b922401b449773247b3af00acb2e0773960bc10b88f83dd31e287f7dc8b77d12a9deac46caa140857aeb4bf541be910277edb |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.0.tmp
| MD5 | 1cce3b14c9341291333bb76cfcf0b8c9 |
| SHA1 | 5c75ee42e7c94dd92f8559c143dfd79a4960ba9f |
| SHA256 | b5e53cddcc860ea8155a3ddf455f0d820bf73d8902e96913050fa622a8e27ad1 |
| SHA512 | 1175f1b94d731078711854cde6b91e92c200d21d1d8aca2eaf2036625a8106025b8e405750a9ea303b2fe6c85ecc25a9b36c1a4be4bd0d090bbab2fa8842de03 |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.0.tmp
| MD5 | 87ad4f6a0d0ebf5766afd016b41c48d6 |
| SHA1 | 461a868af0de9c5056af596d6df5ff4a15b387e7 |
| SHA256 | 810aa7bbd1100465a0cb2f5abf4a31728268a15fcc2f9383ea3f173807e5a996 |
| SHA512 | c6b9846381d2bce89803b8246d465733e9392874629bccf2f7930e23e9ab7c507f21ce393b5e4bacf68a94096d8ce092766e6516f46f34534c9520ef068f9b64 |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.1.tmp
| MD5 | 1796de33e9fbc6d75b6eec238849383d |
| SHA1 | 950ec92c036f8c09a1eaf32fa74c915acc9c6acb |
| SHA256 | 2d4addc5f8b3f74af0d1f48934672942189b7e6b8705d379bb51167624131ae7 |
| SHA512 | 2727394dcca967c0c99d113c233b0f441851465f37d25766d2da073a5d18b99fb599945ab22c06587e1fff6896af9ee0c6f59bff60c11b03133371e94774baf5 |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.0.tmp
| MD5 | b9a5d6677568432e4d91ff3851a6945a |
| SHA1 | d2d7f592333d260db2ee88c78318d17b6e431668 |
| SHA256 | 04c60264c8aaafdb76f9e3d17e6eab54df938c7d8755892a95cf03c2c351d0d5 |
| SHA512 | a5c041ef634e8e93ed4877ac59812e6b46abf55e5d485b324cdcdd01b7e3b66dfd65d918de672b9636bf634d4eea8e03b7a9c3994d7c5c922efd5ad8d68d2e6b |
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-17 10:54
Reported
2024-06-17 10:57
Platform
android-x64-20240611.1-en
Max time kernel
47s
Max time network
176s
Command Line
Signatures
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
Queries information about the current nearby Wi-Fi networks
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getScanResults | N/A | N/A |
Acquires the wake lock
| Description | Indicator | Process | Target |
| Framework service call | android.os.IPowerManager.acquireWakeLock | N/A | N/A |
Queries the unique device ID (IMEI, MEID, IMSI)
Reads information about phone network operator.
Requests cell location
| Description | Indicator | Process | Target |
| Framework service call | com.android.internal.telephony.ITelephony.getAllCellInfo | N/A | N/A |
Registers a broadcast receiver at runtime (usually for listening for system events)
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
Schedules tasks to execute at a specified time
| Description | Indicator | Process | Target |
| Framework service call | android.app.job.IJobScheduler.schedule | N/A | N/A |
Processes
ir.roman.softazarbaijan
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 142.250.200.10:443 | tcp | |
| GB | 142.250.200.40:443 | ssl.google-analytics.com | tcp |
| US | 1.1.1.1:53 | membersent.ir | udp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| BE | 74.125.71.188:5228 | tcp | |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 216.58.212.196:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | 4.ifcfg.me | udp |
| US | 34.172.225.131:80 | 4.ifcfg.me | tcp |
| GB | 172.217.169.68:443 | tcp | |
| GB | 172.217.169.68:443 | tcp | |
| GB | 216.58.212.196:443 | www.google.com | tcp |
| GB | 142.250.200.46:443 | tcp | |
| GB | 216.58.212.238:443 | tcp | |
| GB | 142.250.200.2:443 | tcp |
Files
/data/data/ir.roman.softazarbaijan/files/unsent_requests
| MD5 | 0d210bfb2a0e1f1b4c082a6a0f79de07 |
| SHA1 | bb8ed9e364db79d1d9f2fcde3f15091893222faa |
| SHA256 | 988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d |
| SHA512 | 536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1 |
/data/data/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | 70268782a9e2710172a6fd05925e8acc |
| SHA1 | 40075b4972bdb51474e88fc4c62d65efb8233d70 |
| SHA256 | a32e6f90b70316e8d1446dcd65ec861166a46cce2f827920075ee6cb08ecaa5e |
| SHA512 | 90821ee3ccadfc0a0a8918a73ddacb29cb674b17ced710db7dc95e11c82ca81a196914eac531c1747413b102b75176916711bee763e12a56df7d24b67bb6782b |
/data/data/ir.roman.softazarbaijan/databases/evernote_jobs.db
| MD5 | 6156e7f2c022095e9d3a918e21c61576 |
| SHA1 | 704d0b6520924f28657d060854a5247ec59ce744 |
| SHA256 | 6a74ffdf0bc2d08165aa1d71984acf888e40e0a7b862c4cbf889257e7a927197 |
| SHA512 | e9ef3bb71f1bd02cf90d3bcc7b16938417412151a8c4510136c2b62025dcc716f9935dbf720b1ba0a59169e3e37bda99d52c570f34a60b79512cc9891f0bdd17 |
/data/data/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | ec7873399a0adf45c56897a1a5b04066 |
| SHA1 | 71dcbc6a709ef32c31ea38fe0ee73e394caf5d07 |
| SHA256 | 9cb26142a1da5e8f5409b5301a5f9dd3f2bf26177f60facd489be8c8991a61cf |
| SHA512 | 679aef07139f613769d739f33f7355b146b7cc74a80eb6cb462a0038d2a0e73ab308667533c727add2f8244771dbb79fd36904748aa55e544b7ea5709981f565 |
/data/data/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | e38c3fa7790799678a4cbc864a12f94d |
| SHA1 | b7544ff5555f3ca21f4665f6007a5cc059eb1f02 |
| SHA256 | 5323c37205f9f2f093b86a2440fd4c15afa4d4fc5928fe4c6c08ba95b7b49dd3 |
| SHA512 | e563159a86383e764df2ec522d54b5144b1292df6398b16006aafe9c42040c6ff6b608afbeee75db8055b71430cfe47adadf1b8299f809c3f5950483db8d0889 |
/data/data/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | 8ddc6602e46c28fc873d6022c046b53d |
| SHA1 | ba41816f76655377e407be02ae4247979bfcfc3c |
| SHA256 | b321ba77d2577abd2073e25a8bd0e206f8e2556561435812b1c868506ce771cb |
| SHA512 | a15c9eb3344394ac3108e500234f82e8042501e9385c392f59eaf6fd3bbf9eeefb340083beefaef4e9769af50edab00387aac2d58852e5b125fa019be87d3d12 |
/data/data/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | ba5eea5a3c138f9afe3748edf0cf94a1 |
| SHA1 | 3be623efa9a2db50c5906f66a890d493673db810 |
| SHA256 | fe507dd0926293b70424c695efdd5a1d08f8dca0e9d950f4befeaf2f164efada |
| SHA512 | f3bd074e4ba0665e51236352f2d06e2ce7df9888bb83f0eee3df6e095491f1920d56e02caaf72b0ab63dc2ba8501bf50cd338329c4738d72963a17a3462ec8f5 |
/data/data/ir.roman.softazarbaijan/databases/__pushe_base_lib_db
| MD5 | 2cf9a8155e4f4b6d10417946712aeeb3 |
| SHA1 | e2d2161891c12a5554508fd0bd5415a92331243a |
| SHA256 | 9859140fb32e7c4cbf1a7228ce007c8ccbca820571de3f6eaa2d46e554880b55 |
| SHA512 | ac9c8ceea40ec58e4edd4613141f8d4ad45775229525b03e683d28d6a5dd6906be5c170f4512199cd034d209e28d30dbe7d9bbd3b631778ec6bc5abd5df8f0a9 |
/data/data/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | 42d62fc42db1323002cadf70eebe5216 |
| SHA1 | 7f76e1a6f3969267ebfb6541cda42a19e6539d18 |
| SHA256 | 01c8977cdbc4e036aa4a8a39aaae0af52f4d460a18595b318133b870a6b20ea5 |
| SHA512 | 05314522e31ee2a7af0b6fcbbb6642e1b0894f981d1c1aa75eb56d76ff7c3cab479b41494fd4e6c28e8bb8e6c9cb503fc1e3445cb52c59ad580af6f85728fe96 |
/data/data/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | 9300197fb5d27612903d30980cef7d0c |
| SHA1 | 51366f76f3727ffa64e223f1a19e66fec05a228b |
| SHA256 | f08556d7e270113bc995eea10f5066c2ca8716ff5d7cfd9eb11ed7b567c09b62 |
| SHA512 | 9af8dba2582ba0dfeaebc08174b22b8e0afbe35b24382ae2a5dd3b1c512656daa00bb9be725246f9dcdb84405785a27eefc7e0ca31023ec1bdc6c29a487f7c20 |
/data/data/ir.roman.softazarbaijan/files/roman.db
| MD5 | c249215298e77aaa98ab3b2196fd9125 |
| SHA1 | edd61d32bae06525c71e5f36df2c1efada58ac08 |
| SHA256 | 2c230e6afed8a3cddaed203fa2666f7b3a57af94a177a2736a0c985062127756 |
| SHA512 | b5763d92483ca5cfb9b0e8ffd7608825f9a50fb4e5f921d0f4628706e07295150845e77a54a5cea2df54205e151cc6e2067d2bf42ec9ebe01b78b7ea4636a7e5 |
/data/data/ir.roman.softazarbaijan/files/roman3.db
| MD5 | 6dd276367d44d4093e91dcad5b15750b |
| SHA1 | 995191c12277b5f50e3d1ce2a055184761efd0e7 |
| SHA256 | 48e43010c42015aa3fd83fc5ad86115034ebf68f4a6f2b2617d4cc97ff4c9802 |
| SHA512 | b9e00c5092b99a261d6ea8a272953c0d81ade35a3772ceb910c257a43679fcb315d82489b344afd66b996010efd4972d858363597a113a97552e4f2a2f3e9eed |
/data/data/ir.roman.softazarbaijan/files/roman1.db
| MD5 | c6a498509c94ae37c6749580cd8f6a2a |
| SHA1 | 20bf4a6186c03b3fb2cf9bd22cee140a46eb5cd8 |
| SHA256 | f7f41da14f2da7af1aeece0214098d5f0bcd18b0cae04c07d2945326541352d0 |
| SHA512 | 9866a55052725ec25829f1693d40bfa5ee19ecf12b53e4ce2669d699220dda01a9d87d04b188d1144cd9a79dd6450fd217be19b4110f352d504a85d5d92dad1d |
/data/data/ir.roman.softazarbaijan/files/doarezg.db
| MD5 | 0788b95978101e661518313e3d53a08a |
| SHA1 | d939b5d60d114edd86708d157545944f98a792b1 |
| SHA256 | 8a58441465047a328f3e1bd8e1051c1e7988264507121dd9f6328cb735b29509 |
| SHA512 | 387e6baaa8140fdb3cfcf810b75f05ea3339fc350b7e3233d50dfc6ec0a5a2c4c9761d203b2cd32f0d9b4b17a37181506b494143e63666d5c4ee4df0798559f9 |
/data/data/ir.roman.softazarbaijan/files/banner.db
| MD5 | f649f71595dc604297ef417c34edcd85 |
| SHA1 | ca0fc1700dee356296777e47e44141d871cff12c |
| SHA256 | af98d28ebef44745c24fbb88f1dad8b03a60b07a9c4e76c175954d9ee59d035c |
| SHA512 | 24edf5a3006f0693a73ee63136b54c969f5a5449a4c180e5c523b87965e3a15a3cf3d1ef069c713a92dc66b8f18aa85d6a0db89ef49d00ce82e6a36a48de4690 |
/data/data/ir.roman.softazarbaijan/files/roman2.db
| MD5 | f1f47444e47f5cd49c71141bd144da98 |
| SHA1 | 9b1961a05bee23f69acc5b6ec2e5ed7e31a27ae7 |
| SHA256 | 8099846cc28d2afe36c9d8f0ff37103227859d7645f8dfd410726b96fc882f66 |
| SHA512 | f3314294feee3967de1396c7f2ced53ab85befac697f5ef289eca1076cdd1b29be7b4fdf304bc472f9160af07cd75b948421a331dc98ec8ce1065075587fa033 |
/data/data/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | fb82d5f5dccfa87ee0103abb8479eb1a |
| SHA1 | ba46c44c07acc748440dfd53138521324453c20f |
| SHA256 | 19e092ceee595fdb7f45fc9a1d4c0ca76460095687032b6631bf956222995211 |
| SHA512 | 43e08520eb461bfe9b1ba4cbdc8d4462c81c8ae19e3a4a7561c0ed271330e9c5f937330251a8ac75baf7dd8d1d01bf31b9816e31829754373be671c7bd3c382c |
/data/data/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | ec97d175c9e223d5dc0fad99ae99e5e8 |
| SHA1 | e58432b8fce506333136073c48a80deeb6b79ad2 |
| SHA256 | 0774b16b2f5858d4129a3813700f8493caf92777584f57073345fa0cd965d977 |
| SHA512 | e84f72acd28a338f5048000788300fb9f4dc38f4670530754100b03a8eb6beb613d36737dc7b7e6bb62e520f75d5f59979fa911812c9ca786dbaeb5b4289d1f4 |
/data/data/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | d50c8630d217e6bfedc12317b754e952 |
| SHA1 | ff9d855e8c1857765e5f670cf7a7b61c5065dbc3 |
| SHA256 | 636a0ee1e749c7edb671af2bf4cd34b981a737249b70e14b8979d2b84e9e6fb7 |
| SHA512 | 61ae6e00d4c42328925b9539aadfe863fe87b3d628e700899142725d43da3583615efda04dea0fe82a7acb180de944d4e49e15c1a71321f403ad2b0c99d78998 |
/data/data/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | 7968d490fb650df64d69b9cd486b9131 |
| SHA1 | d505e4fc153d72ba1ba8cdcc89d7d9c039326df1 |
| SHA256 | 5410a403874e730ce3a6f2d852c1275b32702b8ac319521bd88dc42d618a6d56 |
| SHA512 | bea7c247d5e3cb7660f8a80cfaf56ffc7f72a8b1f93fee744b17bfdf93860a5508253212f529a48d8d419e1754fdd1db324347b43d602bd2614c310754faa6ad |
/data/data/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | ce763cbb02a5324434a1aa94e9c1fd37 |
| SHA1 | c30b7d2967b8fab6693380dd17b28b2bd81cf62f |
| SHA256 | cd921e00b5f1dc26c4661d67def313cbba8d39b6813f2350f3923641b8a83cfc |
| SHA512 | 8a0b5eb755410b65654e9f6bf45ce300045cd63ca40a9cf2d84b0ededc0d838c87f155fe9010d705df181f5b9686e6248fe222d22dd13228e7dfa6d528406901 |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/journal.tmp
| MD5 | 37e8e716e0e2f4a0b05cd9571d95b84d |
| SHA1 | f8d068f6931707bddb8cd69f706f2224ad1fea3c |
| SHA256 | 7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca |
| SHA512 | e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6 |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/journal
| MD5 | 5a8c5e7b1bcbcde37d6823ad68ab6a8e |
| SHA1 | 4405729e211b83241f9d46f6a49a55f8967b85e5 |
| SHA256 | b2a2779f6218fd6b184b0439753220812258f5268bc1bb7cfd4bcf258ad41ab1 |
| SHA512 | 1786397502a1c3652a980bf7d3e807fc2bfdbba6d0efb6e3b65e82840322d9ae6e7eb8b2596e69da291f15ba6e684acb37b966814139d60319681f0153a1d1eb |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.0.tmp
| MD5 | 4d54fc484f55474255a2a0988e6970f1 |
| SHA1 | 0ff32e7397a10c1501fafbd475439fc1502b8f60 |
| SHA256 | 4f798da53baa03cadee14c3fb3e56784e1f7c00db0231e1682089456a688df04 |
| SHA512 | c059358462c343a84c019fec80293ca0b958ddb693c2e5fe1e3d2fe183834fbe97d75ff195e03de08cbb09ef341bf887d4288809f2cfe9687bf12edede8aa9c3 |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.1.tmp
| MD5 | eacfb498196f8e74c4055a05a51b34d0 |
| SHA1 | 1165c85baf60e9bf6e1f27c1418386865e55427b |
| SHA256 | 0bdad58f452577e62e12ec2acf3e467c83a7c0c5f64e1a1b2dbefdb25c8d720a |
| SHA512 | 4e8e95dccf45a8c7faa3bc334da05c3312d397ef6065fcc3f526e05da97b1f1b635facc3786e1e9c065c0e0982dc8f86d01e49adfc86712e5fcad2ebdeecd039 |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.0.tmp
| MD5 | 3352f99adf7719f75f97f68d4f33aecb |
| SHA1 | 90b9030e66edb2d2dcac6d6196def2f4ca8514b8 |
| SHA256 | 816034b97d306e1b2756826eb371f3b6d55318a20f6a4bfe54c8f36243039a6b |
| SHA512 | 552821ba173c2cb6007cce9c39c8c89c75de3d2dac90409fdcf2ad6ba019e22f85e2da2a987c7d397cbccc2da6055150a204200edcf59a00234d45403e8ceda4 |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.0.tmp
| MD5 | 433a253bea1336d0a08de5baad250115 |
| SHA1 | 415c9d284605b03b047df4aa316b711a86356c63 |
| SHA256 | b07a5db77bae3ad13c30a908dda7af42f117d72b364c713aeb2a05916f7b1a13 |
| SHA512 | 46ea8f0e641d1fb7d7a2ab29421a12f0ccc34c180506dcaacf526ac3c6eed2321f4f3c7ea27702b08ee56304145351bb0b534add60e7951dab40586bccd6438b |
/data/data/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.0.tmp
| MD5 | 879e4e67d68d574146eb9b49814e5ee4 |
| SHA1 | 3a9e6db05126f495cbb069689905571090b438ca |
| SHA256 | 744ffd1208b76503adcaf73d201c05ca57562cd8912b1a2ee93027eaddea5613 |
| SHA512 | 3eed1a05d73f1c2bb17e0ad51b727abf829fb601a4bd3cfc683f0e5ab70f47423a879ce05b49bc10d4fc40a0f63cdaa3bab3a854ac862e58bc2c4f5671df0409 |
Analysis: behavioral3
Detonation Overview
Submitted
2024-06-17 10:54
Reported
2024-06-17 10:57
Platform
android-x64-arm64-20240611.1-en
Max time kernel
38s
Max time network
185s
Command Line
Signatures
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
Queries information about the current nearby Wi-Fi networks
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getScanResults | N/A | N/A |
Acquires the wake lock
| Description | Indicator | Process | Target |
| Framework service call | android.os.IPowerManager.acquireWakeLock | N/A | N/A |
Reads information about phone network operator.
Requests cell location
| Description | Indicator | Process | Target |
| Framework service call | com.android.internal.telephony.ITelephony.getAllCellInfo | N/A | N/A |
Schedules tasks to execute at a specified time
| Description | Indicator | Process | Target |
| Framework service call | android.app.job.IJobScheduler.schedule | N/A | N/A |
Processes
ir.roman.softazarbaijan
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 142.250.200.10:443 | tcp | |
| GB | 142.250.200.10:443 | tcp | |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 172.217.16.232:443 | ssl.google-analytics.com | tcp |
| US | 1.1.1.1:53 | membersent.ir | udp |
| GB | 142.250.187.238:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 216.58.212.238:443 | android.apis.google.com | tcp |
| BE | 74.125.133.188:5228 | tcp | |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.200.4:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | 4.ifcfg.me | udp |
| US | 34.172.225.131:80 | 4.ifcfg.me | tcp |
| US | 34.172.225.131:80 | 4.ifcfg.me | tcp |
| GB | 142.250.179.228:443 | tcp | |
| GB | 142.250.179.228:443 | tcp | |
| GB | 142.250.200.4:443 | www.google.com | tcp |
Files
/data/user/0/ir.roman.softazarbaijan/files/unsent_requests
| MD5 | 0d210bfb2a0e1f1b4c082a6a0f79de07 |
| SHA1 | bb8ed9e364db79d1d9f2fcde3f15091893222faa |
| SHA256 | 988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d |
| SHA512 | 536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1 |
/data/user/0/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | dabe386fef3fb9e9fbec043f05479aea |
| SHA1 | afcc3d795b10537684983158d6915f497f1a445a |
| SHA256 | 829a4370267c61446b872779791844061dd0f89e60751bd36b37f2ca018d6ea7 |
| SHA512 | dbf705d7986fe044f640f3cd75d125588c468dc72a77b4b513e1911ad635be3605243edd303bd609c831c414952b0a105e947f0f2836e65d69940b2cb60a688b |
/data/user/0/ir.roman.softazarbaijan/databases/evernote_jobs.db
| MD5 | c0859cbb151ce134d01b937a4084355d |
| SHA1 | 66759043fd32dbe4e6f9da0d70285f60f3dec843 |
| SHA256 | 9bb47518520bec03746550356baa852c91d63fbef4dda76401f40ff2ffaa88ca |
| SHA512 | 2ded931a8125b3fe2cebf8a96d2e8e7a8c1fdd997e74931de6d71558cf93822947d8ac0119495ca2063d21b220c64dd55a399082090475c6ba37481cd2da5a46 |
/data/user/0/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | 48fb50208bd7289232210acb0387be3c |
| SHA1 | 6cd5eab08e73d42c3cca4ba5ec18ebe1cb8d5b1c |
| SHA256 | 133385721079eea9c65d6be646222a02968a23dc670ce3711ac8728a9059d566 |
| SHA512 | 5c34355cfdec69edbc83f096e901dcc0a4e98e3af4748bfaec297d6e9dca5ed066b9ca8e7898f1f23f01282600afe4841557bc054beeb4b0e9bb7d25792f8986 |
/data/user/0/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | 913e493d222955f13141c5c00a037f5f |
| SHA1 | 4d733c41f2ced9a0c370b1ab126ccedfc79eb8a2 |
| SHA256 | afb31595e00f02e17dd57268f59db6dfdd2676a07f9931f158c89471d092515b |
| SHA512 | 03e20ffb31c003ddac63501b4ff1c5dd3aea66bb5d01b1965f80881c7020f8d62eb801dc599936a78c540b3f17f5d8cba0a37d417f96bc6248d7ff34ed58b3b2 |
/data/user/0/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | 7915f70471e32b402ff91c31d8aed9b7 |
| SHA1 | 7d3b832cd62a22448d1b1ff2633cddce2160a3f8 |
| SHA256 | 1959e709078ea8a97f8919855f0efc699707af157e6ebb08c1284fa6d44b332b |
| SHA512 | ccd007b8f4e92f46fb14ceecfc19750a5e843ab3746dc083a10255beda54b6aac1f34c487f8647cf587334d559e51d0c06d9c54b6a034f3dab86b1c5ad45b900 |
/data/user/0/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | 95383261bbc2530a2c02abf35b27ccd8 |
| SHA1 | a63c6272d484398716c3a4035d8c463a6e769b66 |
| SHA256 | 1dc09533d85835363765a32403f3db6a8cdccf194a078f574ff91a1f4216bdc9 |
| SHA512 | 1c6f6d409cc6b8bc79d3a1a3b3024f031a0d254119c6ac45595d8ee1b4865948dddf8178ee8b36e8cf3fe9e6ce4fab11d3de178c10ad7d8995dccdcb865a0e9b |
/data/user/0/ir.roman.softazarbaijan/databases/__pushe_base_lib_db
| MD5 | 3dd3347f24eb47610a6b55436d01ebc4 |
| SHA1 | 5c1d8d89853e9ce6245e6bf4a3a1c3f614cf4723 |
| SHA256 | e10c318e5e15b8185e5e5dfc3d10a012fd6a58d9a7ece36d1dacec668affd77d |
| SHA512 | 1907c1eaf5bd20220f02b43437d74b312e507f9915e79632f0d10ff29d8eccd1ba1861dffe3f7022fbe9c5a37eb839adeb5a9ab8a7a8a88534c5cf61ed26486e |
/data/user/0/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | 3c96d5c23422ca641899f5be8893f3fd |
| SHA1 | 1be0d2ce0c9d06a0ca8727796fbb210464cf4dc0 |
| SHA256 | 84c232f61c5dec5a1698eb37c67fe1ebc70cd7fd2cf69388f94def9dfa47f199 |
| SHA512 | 1621a88c788ef58e79d704c4dd52fe732ebcb4cb7b612ad3b3f0a51cb95b56349bda9839d5c78342421e15419437df99366ea7bce335e66bdf713b69714ab9e1 |
/data/user/0/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | f986d9ee3dbb8087830fee0f7b3d01d8 |
| SHA1 | 4c7256b3db891f411148b17da55b47c82cfab3e4 |
| SHA256 | 4ee8aaa883e8eb1c3341a60c69f526ce0de89704c58554761d8230c190cce6a2 |
| SHA512 | b11364982a7f0041706c2f35f87600c767a9d2bc0e985f2089c80e00230bd2089417e69e6f96cf678a99510597bae7601c1a0888da2d9590865a591cc3e9e256 |
/data/user/0/ir.roman.softazarbaijan/files/roman.db
| MD5 | c249215298e77aaa98ab3b2196fd9125 |
| SHA1 | edd61d32bae06525c71e5f36df2c1efada58ac08 |
| SHA256 | 2c230e6afed8a3cddaed203fa2666f7b3a57af94a177a2736a0c985062127756 |
| SHA512 | b5763d92483ca5cfb9b0e8ffd7608825f9a50fb4e5f921d0f4628706e07295150845e77a54a5cea2df54205e151cc6e2067d2bf42ec9ebe01b78b7ea4636a7e5 |
/data/user/0/ir.roman.softazarbaijan/files/roman3.db
| MD5 | 6dd276367d44d4093e91dcad5b15750b |
| SHA1 | 995191c12277b5f50e3d1ce2a055184761efd0e7 |
| SHA256 | 48e43010c42015aa3fd83fc5ad86115034ebf68f4a6f2b2617d4cc97ff4c9802 |
| SHA512 | b9e00c5092b99a261d6ea8a272953c0d81ade35a3772ceb910c257a43679fcb315d82489b344afd66b996010efd4972d858363597a113a97552e4f2a2f3e9eed |
/data/user/0/ir.roman.softazarbaijan/files/roman1.db
| MD5 | c6a498509c94ae37c6749580cd8f6a2a |
| SHA1 | 20bf4a6186c03b3fb2cf9bd22cee140a46eb5cd8 |
| SHA256 | f7f41da14f2da7af1aeece0214098d5f0bcd18b0cae04c07d2945326541352d0 |
| SHA512 | 9866a55052725ec25829f1693d40bfa5ee19ecf12b53e4ce2669d699220dda01a9d87d04b188d1144cd9a79dd6450fd217be19b4110f352d504a85d5d92dad1d |
/data/user/0/ir.roman.softazarbaijan/files/doarezg.db
| MD5 | 0788b95978101e661518313e3d53a08a |
| SHA1 | d939b5d60d114edd86708d157545944f98a792b1 |
| SHA256 | 8a58441465047a328f3e1bd8e1051c1e7988264507121dd9f6328cb735b29509 |
| SHA512 | 387e6baaa8140fdb3cfcf810b75f05ea3339fc350b7e3233d50dfc6ec0a5a2c4c9761d203b2cd32f0d9b4b17a37181506b494143e63666d5c4ee4df0798559f9 |
/data/user/0/ir.roman.softazarbaijan/files/banner.db
| MD5 | f649f71595dc604297ef417c34edcd85 |
| SHA1 | ca0fc1700dee356296777e47e44141d871cff12c |
| SHA256 | af98d28ebef44745c24fbb88f1dad8b03a60b07a9c4e76c175954d9ee59d035c |
| SHA512 | 24edf5a3006f0693a73ee63136b54c969f5a5449a4c180e5c523b87965e3a15a3cf3d1ef069c713a92dc66b8f18aa85d6a0db89ef49d00ce82e6a36a48de4690 |
/data/user/0/ir.roman.softazarbaijan/files/roman2.db
| MD5 | f1f47444e47f5cd49c71141bd144da98 |
| SHA1 | 9b1961a05bee23f69acc5b6ec2e5ed7e31a27ae7 |
| SHA256 | 8099846cc28d2afe36c9d8f0ff37103227859d7645f8dfd410726b96fc882f66 |
| SHA512 | f3314294feee3967de1396c7f2ced53ab85befac697f5ef289eca1076cdd1b29be7b4fdf304bc472f9160af07cd75b948421a331dc98ec8ce1065075587fa033 |
/data/user/0/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | b27cf7ce49e3b583c7a62077820f5102 |
| SHA1 | 4174447d8640456efdee042b7f616f54e6d3d9e5 |
| SHA256 | 1004b622f00873e020997d3ed141fa367c51cc32d919c287fd9b1ef2100e81be |
| SHA512 | 21dcca38c98d3b3231a4937ada86ed038afc7563a4e5b7cc47179ef021f1ef9000b08b4564f74cdfd3ce643ad6e23883c8414c3819a970bf383a107de848176d |
/data/user/0/ir.roman.softazarbaijan/databases/evernote_jobs.db-journal
| MD5 | cea3de1512c1c48a276dba24ad47801b |
| SHA1 | 3f1496f524b930151125f1be213cff91386bb0e1 |
| SHA256 | dff3004e6cc896a7ef7a953250bc27a4a048771b7f12502ec434ddffca911ab6 |
| SHA512 | 70a1892eb6826f87fc72b54576cb7d4e8f9c2b7aaddbb7e402b37dbd6d458c1f049833bc26d6a3560eadafa14c2bbe294cf4cd5d809355c4dacd7c8dce8c6c01 |
/data/user/0/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | ede32526d7d6b717f5c394036f081001 |
| SHA1 | 70f5c4c6e6d3086ec5ae428428a73588ce706342 |
| SHA256 | 125008740f0398b4505d61b28badfb71566778c0d9155cbb2b485aefa0f907b7 |
| SHA512 | d8c86a496e9dc5c6aa84bdee78dbb7e2c4efe029f81dc5611e1d8c4f30359e19b33b11146411c7c8711a240d475092526e216a3544905cee667fcddfa445f2aa |
/data/user/0/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | 2f703c419b37bbf59785b73e8f50723f |
| SHA1 | 57057a58682332b92ed03d20562fdd0d564f546f |
| SHA256 | 1a67cf246251fd47a24f0556bc13ffadb645a102ec7f044fc8d4ff4bb659daaf |
| SHA512 | 5e06b2f169e1763704083651afa4005ed9931cca58af8b9a0c25952ce8bede5a502f4d7cec8cd09dcc74e0a2f508ca2db04b0a17f65d9acef8ff5c398e7eca17 |
/data/user/0/ir.roman.softazarbaijan/databases/__pushe_base_lib_db-journal
| MD5 | 5c02b75221cb95c79ef8fcf6b13ff3fa |
| SHA1 | e5ffe8c71197587a7e2c135cefb6ac2e9ed2b5ea |
| SHA256 | f6fba0e7e093d32c7980b2fb2b7e5f0582d7283b10b06b6b94be903e06cd5a67 |
| SHA512 | 2e581401c1e5c6b74533e1a07a2e6f8ee75cf7c6b11f8a07f3b52c164b06834472ee850e1bf10098e0902e1ce756d75c074f09c41f839d19fed27cafabcb02c6 |
/data/user/0/ir.roman.softazarbaijan/cache/picasso-cache/journal.tmp
| MD5 | 37e8e716e0e2f4a0b05cd9571d95b84d |
| SHA1 | f8d068f6931707bddb8cd69f706f2224ad1fea3c |
| SHA256 | 7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca |
| SHA512 | e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6 |
/data/user/0/ir.roman.softazarbaijan/cache/picasso-cache/journal
| MD5 | 20e296be002cec3aeb198b4cb6285a4b |
| SHA1 | 1c6dfd9b716352222f57da558d1c8a13a947088d |
| SHA256 | 45d4a7d9ac69696ce7d96c7aeff0ba59bb6cb82819b0447a1933e53a6f62b50c |
| SHA512 | 6a886f877071de6aa4c4c0b4626f40e3f84550a87a946687cb2abe169b5866752238277e38ae0f2fe002af0032764e39df6206c24bc471166b3f273145089ec7 |
/data/user/0/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.0.tmp
| MD5 | 3392f9f6bd3ae5817cddaeb03bddbaa3 |
| SHA1 | b79cc67c7d72d556d79f9501707f46c65a995842 |
| SHA256 | 38d0072329c7ff9cd30efca4f7bc36f7b257eb1715456442a02a1a591fc1ba05 |
| SHA512 | 4a0233eb6b72d2e29a971c7d223d916b9010c38dea02e9b16294ac5ffcee37a8f7fb488b863773a631d9f2f03cfea817e737a41dd7270179d2704bc77c456dc2 |
/data/user/0/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.1.tmp
| MD5 | 7e383e77e5eea584ba167b36ad012343 |
| SHA1 | 81a6e96f0999dbc18a0d50860521345fdfed1367 |
| SHA256 | c9aa7d3f9634276fa46d2ef55b92862ab6653f219e8e54952b40ac3dcbd10a25 |
| SHA512 | 3166b81f6e3fd9b5f3d7f3c7f43e97932d7d9551b397bd92948a3c135015c192207c4afca9b1d78dbfb3fc8aa3f29322879f1d7ac5d778c345c34be3dada6dc2 |
/data/user/0/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.0.tmp
| MD5 | eedda2cad6cb4406b76cecef5f3ca909 |
| SHA1 | dd10245875a9678c89263293d7b096c54fd190ad |
| SHA256 | 34194591b4373e9314e52b2d3073a2dd9779ff2c7f1202fe25e3507763d23d34 |
| SHA512 | 3e9a6832b16c2f61ac2a380fc9d50b9d02b3fd0236a706b38bfbdaf8d66f60edae74798d58f0623ff33b3c8f27ad761754865caf2d4e117d0d383ea891b46c8a |
/data/user/0/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.0.tmp
| MD5 | 74176f47b946c8873206a693c52e6536 |
| SHA1 | d394b1581fdffa49986c5ccad60d3a4cc6807f40 |
| SHA256 | 60137428a7ac906d67c423e2d6345b471e0e48475519544d1861a1e230812fc6 |
| SHA512 | 64b71c3c022fc5923e580637cdeb6547dce8d86b68e2ff2e0ba1f629c04820771e6b31429993a540ceaeb11323ffa8bde38880f965fba1020b9641c2c1ba04bd |
/data/user/0/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.1.tmp
| MD5 | 0836a937110c6c406e030ec1aa38582d |
| SHA1 | 95c9a40c27fbe99ce3b6cbfbc2c78125f81f64fb |
| SHA256 | 3cc31461c7a0a6b559f7e1ab58c64577e3ba5d1ea12057b32c887ba1d644e67c |
| SHA512 | f1886cbdf780067cc710d907aa8a83632b51500efe05d561d0f667e87703bf8d510016f71ab032d157007a864d933915834cf38d8a38f42d3b2a0700d07f1ff2 |
/data/user/0/ir.roman.softazarbaijan/cache/picasso-cache/3ed1487a0946d3bdf94ad807b24c5c96.0.tmp
| MD5 | 9ba6a1da625b741d59f26add17740f08 |
| SHA1 | 644a34a73d7f2220f6ef056112a1a46514d6c78d |
| SHA256 | 7fb8258a21c9842b82fd40dd0c621f516dd79fd2f12bf18e8508692f0c582954 |
| SHA512 | efb1477519760e7dd955f16adfef43b76902c55b2ee7563adee4fcebc867802422785776a0c89d63eb46bd799be5dee95eab833ae2bf16f906837b065519d8a4 |