Analysis Overview
SHA256
48d6e3eab1db452c8ce06895827044c3c7be19091ce74016146131dffc3acc85
Threat Level: Known bad
The file 0d6de13394efc4cb03959454c48b49dc_JaffaCakes118 was found to be: Known bad.
Malicious Activity Summary
Irata payload
Irata family
Requests cell location
Queries information about the current nearby Wi-Fi networks
Loads dropped Dex/Jar
Requests cell location
Reads information about phone network operator.
Acquires the wake lock
Queries information about active data network
Requests dangerous framework permissions
Registers a broadcast receiver at runtime (usually for listening for system events)
Schedules tasks to execute at a specified time
Uses Crypto APIs (Might try to encrypt user data)
Checks memory information
MITRE ATT&CK Matrix
Analysis: static1
Detonation Overview
Reported
2024-07-28 06:52
Signatures
Irata family
Irata payload
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Requests dangerous framework permissions
| Description | Indicator | Process | Target |
| Allows an application to write to external storage. | android.permission.WRITE_EXTERNAL_STORAGE | N/A | N/A |
Analysis: behavioral2
Detonation Overview
Submitted
2024-07-28 06:52
Reported
2024-07-28 06:55
Platform
android-x64-20240624-en
Max time kernel
47s
Max time network
144s
Command Line
Signatures
Loads dropped Dex/Jar
| Description | Indicator | Process | Target |
| N/A | /data/user/0/ir.ronak.soupha/cache/1582435991586.jar | N/A | N/A |
Queries information about the current nearby Wi-Fi networks
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getScanResults | N/A | N/A |
Requests cell location
| Description | Indicator | Process | Target |
| Framework service call | com.android.internal.telephony.ITelephony.getCellLocation | N/A | N/A |
| Framework service call | com.android.internal.telephony.ITelephony.getAllCellInfo | N/A | N/A |
Acquires the wake lock
| Description | Indicator | Process | Target |
| Framework service call | android.os.IPowerManager.acquireWakeLock | N/A | N/A |
Queries information about active data network
| Description | Indicator | Process | Target |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
Reads information about phone network operator.
Registers a broadcast receiver at runtime (usually for listening for system events)
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
Schedules tasks to execute at a specified time
| Description | Indicator | Process | Target |
| Framework service call | android.app.job.IJobScheduler.schedule | N/A | N/A |
Uses Crypto APIs (Might try to encrypt user data)
| Description | Indicator | Process | Target |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
ir.ronak.soupha
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 172.217.16.232:443 | ssl.google-analytics.com | tcp |
| GB | 142.250.179.238:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.178.14:443 | android.apis.google.com | tcp |
| GB | 142.250.178.14:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | myronak.ir | udp |
| US | 1.1.1.1:53 | myronak.ir | udp |
| US | 1.1.1.1:53 | myronak.ir | udp |
| BE | 142.250.110.188:5228 | tcp | |
| US | 1.1.1.1:53 | myronak.ir | udp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 216.58.201.100:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | ip.pushe.co | udp |
| US | 162.243.147.245:80 | ip.pushe.co | tcp |
| US | 162.243.147.245:80 | ip.pushe.co | tcp |
| US | 162.243.147.245:80 | ip.pushe.co | tcp |
| US | 162.243.147.245:80 | ip.pushe.co | tcp |
| GB | 142.250.180.4:443 | tcp | |
| GB | 142.250.180.4:443 | tcp | |
| GB | 216.58.201.100:443 | www.google.com | tcp |
| US | 216.239.32.223:443 | tcp | |
| GB | 216.58.201.98:443 | tcp | |
| GB | 172.217.169.46:443 | tcp |
Files
/data/data/ir.ronak.soupha/no_backup/com.google.InstanceId.properties
| MD5 | dc7474dae2c33e5cf86692c7edae9fe5 |
| SHA1 | 887754268509b513a14f31600a5252acb575dc02 |
| SHA256 | 5062e17c5a0321b0cc460c3c0f28471c7b7f9ce40ff0183d9941ab22aae3b077 |
| SHA512 | 2a08a161f34dae91ce5750d15ee5f7907549065062b755d81eb6c0d8cb3e23b8dab6661c3be649862b2cf3e66d54806b320a32881541aa477ca210e604721517 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | a67f02c10e19ed23a1853ea3e22b921e |
| SHA1 | 4910f82e5a72ea3adbb39c56f49c7599cfb9a98b |
| SHA256 | 13756ebac66a54470875f24123c50f8ea6f61c47f1d53250d66722769904316a |
| SHA512 | 561715237dfb9331c4d00ab1d41b0b9838194fd5bbb7bfd9d220a4ad9e9fc4135931758494cc4a0f3d9392b17ac96468056207cc57e312a55c83e0199bc11447 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | eb52a90bb70b76e946b62f50b6f7fb85 |
| SHA1 | 42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0 |
| SHA256 | 48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4 |
| SHA512 | b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | c2e8b4e8670ba29904d55aa9d947165c |
| SHA1 | aeee2220789f611e90d06f8c4339a2d604150990 |
| SHA256 | fe5f94a84bbdf8f30cea0d89a56565ab9c3dae49c27e258c736daba106dcbae5 |
| SHA512 | d540c1ffcc221645efde387855821217a5fe83a843122963036f1015aa916ac1d5a5f4a201a4a0f4eaa97b22c8a6d26051f80856a136b5a811cf5c8d44f806e0 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | 89c2ede547581d489d9408740cb479cd |
| SHA1 | 5e25b435ebda1a7bc3929b11a07c5ad518725546 |
| SHA256 | 793173e1cf4b7818b048ef0b030d88b7c90755d6482a0755c182e2740b076e39 |
| SHA512 | c840084a605803057885cdb0a544b31f99114bd451815933a6f133aa9cdcdcb53fc86d218aa72467b081ccfcfb37dcd11000c33bc7dd1f76cb56192d17759669 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | 4a900018520bf5d7100c53fe5abb6177 |
| SHA1 | 225257063f600f07724d143658d2f25f9e9be3f9 |
| SHA256 | 7253ecbf7bd56afb71f2ca6e71ac9efa9fbb7e7e52eb8402bb5ea2bd0720d53f |
| SHA512 | 5481b28503b5eafe5c0231c35de9d28d55f5291358e153d1b8489391449c20ae9c7dc8f12c66143787faa435467150c6863623d2a5e8200a4c402cb568d51f3f |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | c4bb9c23e7b835e3319a7df61a7d0f75 |
| SHA1 | 4e0762d459d67ded598650e28c06e9d2a8dc7313 |
| SHA256 | f6b4aa44b548c8ed3895b018880dd91f98080cb9796c4ccdfe1cf8b7d9986ddc |
| SHA512 | 5a98e8961892d06d9c11e411181ea330d65df0127e149075a1ddc294253ebc8248feea8d5acf8f46eeff80918ade17f18bc3841e838f11a8d7c7e7283249b57c |
/data/data/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | e008132b31d516b823005a9ede530fde |
| SHA1 | e35243bd977287dcfea921bd39c1920205c8b206 |
| SHA256 | 7d3e68dc34e4a035e213d5ffaa0c0d497148de2e4efa8e21771adf114a2618ef |
| SHA512 | 75e9916fdfd3962ffeb09812c4b4a68a7e22e14a38aef81eb9f7c75660e72e4dffff47ef053b4b3660b9ea78adee4ed809ec6aba4304fb8b41b8d091de3da60c |
/data/data/ir.ronak.soupha/databases/__pushe_base_lib_db
| MD5 | 1fd9d36e8683587330130da9b34d42aa |
| SHA1 | 16fe6b184dc1169721438fc3b3e6c326dc184a93 |
| SHA256 | 7a3581322776c7abc19f3430f06d336a927e193d3313297e00b6c654c4e1a389 |
| SHA512 | ef8c31235c796da93b5ca6c5cbfd7c9977474104e39249fc5b7ec8746a15fd79f7cdc4c25d93ee1afb46e5ebf79466a96cf9f668af22258fe9672187d3cd4f69 |
/data/data/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | b7033ea3a0922e67d7d23b1095c04c66 |
| SHA1 | f865c9e1c81c6d57c128dae190a828188296a6c5 |
| SHA256 | cd56f711fd17be013f3009c80ad72e6e0370c7dcab80cc0666b59ca1bb917c3f |
| SHA512 | 46111076407190a5b53e63b7d423c8658619beacff20b6ebc58c24622b3ac12a0254676273d1ab6e8c5c6d4753a0ec26cb741da0786c49e20aacc36a11c38b25 |
/data/data/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | 5be9990aa15e8b4f9fabe141d75bd6cb |
| SHA1 | 284fc206da90e5e6838cd8f1d856f72fb6911338 |
| SHA256 | 16554231a77052325f8dbeeecff6a3e0dda9ee994f2c23ab5d8c4afdfa49da0f |
| SHA512 | f91b61238828da30339b052ce737cf1184e095df61b277d72a5dcfef3f90fe0d8779516aaad9e2adb77c30a0f6aa230190232784aae1c9621c7702a8322cb1fb |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | 31f99957e59e12f15ac9b720e1e24558 |
| SHA1 | d2f7c3db875e92e35760b68d7281c0114e717911 |
| SHA256 | 05bce8be23f95e81d6f16b89c609aef1ab0ebabd970ad8b2cade1085b90d2dd0 |
| SHA512 | a4e3f156223b0d3fb6f60f3db5d976046d53336768eab6aa6c52631c3a68b7b9c565aba9b86f81a055d54451fad84ca952206975ab69f79a577751cbc34de76b |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | ca27f98fb26c985bde816c5201ed4b85 |
| SHA1 | 1bc17e994f19d9988365c3ddac5500cfd25de5e1 |
| SHA256 | 08d9e2643cbb2580d3a7ee9a940cd01e243367e925b42b1ef93dffb1f8699fc9 |
| SHA512 | fc74727b4850b9d510966efce9ddc730875143433415b1bc19819e4236128b931cb515d64e6fbe72441132fd62a88d5aaf56b89dae64e88df54f41efc8e89ef4 |
/data/data/ir.ronak.soupha/files/info.db
| MD5 | a2a16102ccac4b96a5decf6bfd2c441c |
| SHA1 | 6dffa35ff59a6ce6c8283c88ac94c29a6af22e0b |
| SHA256 | a68c5a7ec46b9854dca0faa15a64bb5b998d7828199859968a353e7a5076911f |
| SHA512 | 4d540a031f3546c45a259abd95be76d09e819ad3e68f3a480b81a80c319eee40eab605217e7c795a3f980d0e21fcb60353273caa343cdd7f198bc4aac9792424 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | bd09f01e5dbed940f1d5fc895d0cc383 |
| SHA1 | e675aef3692c8c4e7b752e0c696792475e9ff9bd |
| SHA256 | a359279f69783b91d6591b925d0737b1bdb17825151fdc83027349db106e6074 |
| SHA512 | b55ffa3bd2198ae6488d2a328094158fbcf489729a319432bed9e7a7b45a0b6f8384be653f665fccd0aae35a5594dbe460373f1c148e4f9eb6e3d1c1f5273872 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | 1d9f0683979d64b00940f0a2ec31350d |
| SHA1 | f395e2d9b91f424b017e13a9c9822934f4ce93fc |
| SHA256 | 5f9ef4f38dd7f9f622b0d1363e3f2d01e7875810ae004ca236f67cdd10b12127 |
| SHA512 | cc9717fc75e140da868f1fce4448e69b72ae8f0234d82af85b02e5c5d8d12e0462b24ca32630231579b5ec9c0afde8e4dc3e513aaec9230bb0eb763d21ef90ac |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | 9340c6967c475f0b63680ad6a03d9d2d |
| SHA1 | 76788fde4d2f97436acfef4fcd9c9d65c7fb667f |
| SHA256 | 9546e6471164ea5c1a232090a4afc0113b6d1e60853b8785987117557bbf4d64 |
| SHA512 | 23f55d0c42486b1c6894224cf584d20ded563eeeaca5ed3c19356565157c4a38695e0c2376c1c4ac0dd54ab556a387171f531131a2bb657aa518bb2651f8b5ee |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | d2845eee747d763d7fcd0542c31e4578 |
| SHA1 | e3c77884173f1d760fc4af130a3572094aefea10 |
| SHA256 | acb3d51741d0541bede39514a7eb7329b793164de404bd840abc165ce01a1314 |
| SHA512 | 8e116650ded8ca5087671390b11811512c72b1d235fd8228d7e6952dacaf4df79380e6f0be1b5568ac831696956a615f6ee0247d138c271ed042e91cf6b6e218 |
/data/data/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | 9988ab40bfec64f97773456be35ab29d |
| SHA1 | 4dd614a75c353fbb5fcb2f48d051823fe4a9a44e |
| SHA256 | eb4ac08b862abf472aee327f149fc327f8a90c916fe5116eb194337e07473614 |
| SHA512 | 044bcb5359cc08259dee3e469030779b075ad53e496b42aadf20104f79499d1c66bb259055599ebced1fd22a7d55780674dab30fee216c4a10f5ca85c25525cf |
/data/data/ir.ronak.soupha/databases/evernote_jobs.db
| MD5 | 636748249c91549407c935b47979c5c7 |
| SHA1 | 01582da4053affea89683537adf8a3a27ef4b2ed |
| SHA256 | 60572a67b34ca54a4b81d8db8cf5f00fe953430d3e1ffb795d65e70aafb6add7 |
| SHA512 | 16535aff184fab627d97d944a939a4db35bd98c2850bd4f882c02bfb4341ef1bbe07c59ca5a6b0e264aca4078d3aa8d037c3acb5985ccc8feb02deddbb224f2f |
/data/data/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | 9e6182933678052a89160b1bbf19f845 |
| SHA1 | d0e92047c4d0adf2bf2bc6a114ba1523e2f0de7b |
| SHA256 | 90284e31170115a39bd5000af58d0ff51f7a63612f8830a1151df72f5673b424 |
| SHA512 | fe9930effcb5a5c3e244b943fd436fb307eed6b654775bf8d3fa650fed2d223e4c4e04bb6421e28785b6b214427ad994acefe5c7beb8658d12a4e427db0177bf |
/data/data/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | 1c199e0d102d1c625e33fc0df33bdb4a |
| SHA1 | 276424059d830be3ed993435fac125f35ade452f |
| SHA256 | c2612cab85a7c39c40e9e595267d5473909884aa41185714541564b7cf9ddb11 |
| SHA512 | 3c06b997d1cec9b382f05d4b87c7891e0b013e27781baa478104192f18ab0208aaa87493a536ee441bb78765eb9c43ea84ce61400870b18f7775de03f75928f8 |
/data/data/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | f6a4303fcba156f1edfa207deec92ba8 |
| SHA1 | 995cf43a926730f6f60806d43dfb66db31f28e55 |
| SHA256 | 558247c4b8a26d89e51c4e44f327a5cd7e622d73689fc3be38870d732d11d7cd |
| SHA512 | 61209b23822361d1319d59995a0ecc4ffc2db208c39f1e81f2123d1e3ca79374335900b910d7837b562311fab6fca6795547ce4cee6f31509b0b2aa481331081 |
/data/data/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | aa542e37b698d1b4151c8ba8cba1e41b |
| SHA1 | 5a9ce764709df34f8c14bc1813fbefe6459254d0 |
| SHA256 | aeec29c2fc7546dc0c781b0595c209f3baed81c6d9ad40e3b25f52adce8a9407 |
| SHA512 | 8398d1f1340436c602ef3315d5c8b326ee753e88bc7a9b56b07148ffc658c68a71fb84c1a1426ef8f4494108e21f732be9a06fb344a9f4b042bb1ad132762f6f |
/data/data/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | a9cf478887bb35aecc82115f3ed21e8c |
| SHA1 | 802a99d6e28dd2b756c44fe8a7ceb2d90badc04e |
| SHA256 | 9b368ac56a26c36e098efe7cb636b3daf91af978dc2d85e0ffa6aa70cb57fcdc |
| SHA512 | cd693363ed4b080f1bd29c2367a0f8e01ca058b20fc702791ad35ac357ea179eae1fee3710d74ff3a4b9aca1c7de8ce94d36ca089698c0a3e1390837583fe71d |
/data/data/ir.ronak.soupha/cache/1582435991586.jar
| MD5 | e8e0527a01aefdb89afd2c508f131da1 |
| SHA1 | f1103e6b260c657ceb3d95f1b023af3fda8b133a |
| SHA256 | f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce |
| SHA512 | fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34 |
/data/user/0/ir.ronak.soupha/cache/1582435991586.jar
| MD5 | fde2ee00cbd121cfab5290b078aa3ceb |
| SHA1 | e2b77d5320e155e413d040a8c20020962065b2f8 |
| SHA256 | 2897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685 |
| SHA512 | a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56 |
/data/data/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | 35fcf0d35567992dd12995005763766c |
| SHA1 | 1a3e90602d7c411b6b85d737a0806d60858b577d |
| SHA256 | 50534adf1eb3564b366eef502134b6b93fac263ff733901356f483f953733fbd |
| SHA512 | eafd98cd484d841f5c77c786a73327b96b522e375f37c321f89e37e8b5f0996d73388c8957de0405416f0544f22474519239216f0b84cc20f0de4af1c90338d0 |
/data/data/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | 06107a68a96fe6ebe9c6ecd38e502bf0 |
| SHA1 | f87414c6d2261aabcc63d8dd60ab6c7a3c3bd057 |
| SHA256 | 6526226442ebc98b5101c00dc6e84f11600e93b3b1c44e4dd715c5d6099fa426 |
| SHA512 | 0e63a6ffb5826ed7abb6851f33b4322753da3f239df023f64025c1d0aaad2cf2fe7dd6523e96e6318ce6b101669819300ff3109a03b4866a6215e900abd07eb7 |
/data/data/ir.ronak.soupha/cache/~test.test
| MD5 | 098f6bcd4621d373cade4e832627b4f6 |
| SHA1 | a94a8fe5ccb19ba61c4c0873d391e987982fbbd3 |
| SHA256 | 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08 |
| SHA512 | ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff |
/data/data/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | b297268671cdb5a84d8e830f702b177b |
| SHA1 | 84fb9a75cd7f64e8a3582167e74e0c022a9a7dfb |
| SHA256 | 604ac2761a2eac8189715e4548beef18d076ed3a686a6007aa73469e9b9273a0 |
| SHA512 | 9d5b58a41223e4f0c82cbda28fcca47027e418336066384ff02882a829dbd8229ebb7c21590a1b7ad721cc92f02e456d2092cb83a120ba06c6ad64978319f1b3 |
Analysis: behavioral3
Detonation Overview
Submitted
2024-07-28 06:52
Reported
2024-07-28 06:55
Platform
android-x64-arm64-20240624-en
Max time kernel
105s
Max time network
183s
Command Line
Signatures
Loads dropped Dex/Jar
| Description | Indicator | Process | Target |
| N/A | /data/user/0/ir.ronak.soupha/cache/1582435991586.jar | N/A | N/A |
Queries information about the current nearby Wi-Fi networks
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getScanResults | N/A | N/A |
Requests cell location
| Description | Indicator | Process | Target |
| Framework service call | com.android.internal.telephony.ITelephony.getAllCellInfo | N/A | N/A |
| Framework service call | com.android.internal.telephony.ITelephony.getCellLocation | N/A | N/A |
Acquires the wake lock
| Description | Indicator | Process | Target |
| Framework service call | android.os.IPowerManager.acquireWakeLock | N/A | N/A |
Queries information about active data network
| Description | Indicator | Process | Target |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
Reads information about phone network operator.
Schedules tasks to execute at a specified time
| Description | Indicator | Process | Target |
| Framework service call | android.app.job.IJobScheduler.schedule | N/A | N/A |
Uses Crypto APIs (Might try to encrypt user data)
| Description | Indicator | Process | Target |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
ir.ronak.soupha
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 142.250.180.14:443 | tcp | |
| GB | 142.250.180.14:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 172.217.16.238:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 172.217.16.238:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | myronak.ir | udp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | ip.pushe.co | udp |
| US | 162.243.147.245:80 | ip.pushe.co | tcp |
| US | 162.243.147.245:80 | ip.pushe.co | tcp |
| US | 162.243.147.245:80 | ip.pushe.co | tcp |
| US | 162.243.147.245:80 | ip.pushe.co | tcp |
| GB | 142.250.179.228:443 | tcp | |
| GB | 142.250.179.228:443 | tcp | |
| US | 1.1.1.1:53 | accounts.google.com | udp |
| BE | 74.125.133.84:443 | accounts.google.com | tcp |
| GB | 172.217.169.78:443 | tcp | |
| GB | 216.58.201.98:443 | tcp | |
| US | 1.1.1.1:53 | update.googleapis.com | udp |
| GB | 142.250.178.3:443 | update.googleapis.com | tcp |
Files
/data/user/0/ir.ronak.soupha/no_backup/com.google.InstanceId.properties
| MD5 | d3fdf0ed9297a7c1028d4e68e41f5672 |
| SHA1 | f6f1d60fefcf190ac19402a45d9b3e9b761b1dd9 |
| SHA256 | 4d46ac1a36d37dfdaf26cfcf053970b71449a332c0338f962cbf44aa4e0591a4 |
| SHA512 | 9e4112bb17fb1a73b89177710b2572381f2c043c0084feae37b5bb33800723500831b6aab85b494537c0818b23996b064904d63a3852fb1586e98972fbd045f6 |
/data/user/0/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | ad81efb48cecad472de0c3b512fd8b1b |
| SHA1 | 95db9fe1bf8ade0d5af00ef13674f9505c9d1520 |
| SHA256 | b2a4f1fda5e239ff3abe98172935315dec2822b393f343399423d38817f373b9 |
| SHA512 | 6943186c7e568f3e8fe55d00d23b7554fe0f4cd692187b7cef4c6a4f559fffa9fea7ec892ce9cda5bb0ef37fd6d63f853408b3f0cdc65d0ab4f304bc56e3225e |
/data/user/0/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | d9cf75fdd1c2292d986f6c3d5d60f2c8 |
| SHA1 | 07ecb1d3a26d952ae5fecf54f36699ab498510b1 |
| SHA256 | 2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a |
| SHA512 | 442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb |
/data/user/0/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | 601ad7fd19e91005985faccfd3cde269 |
| SHA1 | 7e2196fcf3fc69cae198bd1c0a76223ce21b4c8d |
| SHA256 | 070803739b21176d302460b20c4774d34deceabf07d3ce1dc39b15615cafc248 |
| SHA512 | c4e61abcbead76fea458671b27e721eb4cce514920b3c61fad40482bb7143b0997ef5ea3c8ee42f0d6a5e07f1a6e53f8bdcb29c1ac708a82f0d2b72255267264 |
/data/user/0/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | b470b1f568a2bd61fa84e820aea3d4ac |
| SHA1 | e63629c012dbda7636ea652c1041522677a4bdc7 |
| SHA256 | ee2b786c27b2480b38384637f39743cb32e8d067ef14ff1c782efcc4e7c499d0 |
| SHA512 | fb721c17ce09c239227ef40c5fb21da6521bf5ebc8e2bf44e083352d34e3cd98de6d6b82348093a5dc1245c9d19d0233f752c4e2a3a24fa0dc8414fb4f6f0c8d |
/data/user/0/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | dfe680b596277977f105a119423ae12e |
| SHA1 | a19430f5f16039162adc43deb4fadc2599336e8f |
| SHA256 | bedf939f65dae0133656b265c6a89e0f6f1066e6deb62c1fa32fe529459d75ff |
| SHA512 | 73ec6694aeebea783643d526c2d98d3a9cfb228aa29504baa41e4a29ad00997287c6e8150105361c31258bdbddbe8f3836d1ac25c9c7bc7e1e77d1db050d9e3b |
/data/user/0/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | c5291b756eae32659185f9f24aa5fb37 |
| SHA1 | 8c146c64cefe73070ffd9b2cd020988d811ff395 |
| SHA256 | 486f4fa57b192c07fb37c159e018335b2c3d5090a2bc7b30bb9e6636bf07a667 |
| SHA512 | 1102358ac8c8ca8752b0578e6b2df29787a3d949fb3c25de290d517891365c31011c5a9de47687a1760feb4883a2d349cf3f10a6facfb781f2a5f95100a6cc4f |
/data/user/0/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | 6be84593b26c58a2f4de858ecf6b57a7 |
| SHA1 | 5b152330fbc503de9ce0c5a33fd58e02ea145a21 |
| SHA256 | 5cb562e1ffa0fda4d4caba1ee02e63fb262d9b2385767d4f39a7cbf68c3d654d |
| SHA512 | c15dfaeb892857b166e348ccf4dd39f1f320a650227a153ba6039116226cdfa6437f2fcdea8f7958f67eae93c589289a64b2c1c34721396eb43544bb13217285 |
/data/user/0/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | 3b7fee0cea78d4b9be2fdb4ce5a5b3aa |
| SHA1 | e4178f312a8537818a2c2e915e0b64ee002c7bfd |
| SHA256 | af2707c892968d09acfd3a78f69ff53db53e882a2b19b4ac57d3df6881032182 |
| SHA512 | 4808384377edd57593a6186fe9f3623a561e6bcfc4dd021853f05581aa77bc26d7051931590527804e5311d6cf46301d88a8cc3f61ce837698e8a4d0751360bc |
/data/user/0/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | 34a0f3384815cfba6444ef3d17c8205a |
| SHA1 | f53608b2c41401b134af3b1fd32f92b9ce2dac80 |
| SHA256 | 4f65287281992e6dfc41bebf5317be61836d236cf34f4eaccf096fdfaedd7100 |
| SHA512 | b924b16a8913292b1ca7873a29d91f20ed0583c22d9253de64854d6c4ffbd3b65aece4d3095c7d8c213727258b7961bf92ed99f3a194abd011369ba22fd2180f |
/data/user/0/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | 2c3de51c7bfe7cb6a8a40ce473c2ef7b |
| SHA1 | b178eb42da369ad88896af7c05309ab4a1f988db |
| SHA256 | 41b42ac528f12ca198981e7eeb81917d26133b5ce9e0ff327b5b0a3a43b5dcea |
| SHA512 | 49df3855f1164e13c855e08d87e1f733449b6cb99428c01b2a9002f052fad8cc1c1d0e13b7d20a2297d8dbc0a3042020020458bed112e4170023520e9e636c23 |
/data/user/0/ir.ronak.soupha/databases/__pushe_base_lib_db
| MD5 | ca6a15aa47c10bbf822d2e9358942e92 |
| SHA1 | 8852dc89984594a20877b08afebb909fa7a77013 |
| SHA256 | caf90b3ca6113ebf4083ad4dafc0fe6cdb4e1d074e6dcb92a843476cbe9a1e33 |
| SHA512 | 3dc37285ffe5b9a4dd5d396cad0749974e5a7d947227f27ee7f0840a85cda3ad766152550b1b21a4a2d9ca74704fdac43ad57f2e1c404947981761ea90fd04a2 |
/data/user/0/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | dbe584f28f83cab864f892251cc1cb18 |
| SHA1 | c321d03f1f0a93818c01b7030ed6a48c374d0185 |
| SHA256 | c02860e5b828d7fd845c35da3f26f178eaf603735d32b1ce9fed7654d8319145 |
| SHA512 | 211052427a7b1c4eb64833a8bf1a096b043199744e859787805894b6e5e72ff820100154455c6915500e23a8a3c2a3dd9312c8c452bcf4d51d6852a3cd15e56a |
/data/user/0/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | 469dca9bf62de27fc6e12996a69f3ee3 |
| SHA1 | 31d2673a40e13c64b7c703416a0e179551ab8b91 |
| SHA256 | 4a18a8b7c5c8cae9debfb0a1912cc9c934abaf83a8a6377a799ea353799afceb |
| SHA512 | d1998567d0d6c2df3a4af730e6b05c67b6a5dfcd7a1fa399e722a5023dc1553f4e42b47dd7b4736f1281810e54479c94822628658402ac3114ffdb7af2578fe0 |
/data/user/0/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | e0e35fd2b57120415682d33b6ad7cfe7 |
| SHA1 | d0af67dda9db7c61b940f124b2fb208294049cb2 |
| SHA256 | c80110b9f5ad2ab9ba5cde27e2ab3068f477536a0337eae681d81193a1ad1634 |
| SHA512 | ded440b267c239318ebedf61bf8bc0c77d9ae793ea2cdcdf9e3837c87b6d8db71fb9c14e82adf05ddcefaef1eb330febadf553c00c8594dfacb9395de0b7024e |
/data/user/0/ir.ronak.soupha/files/info.db
| MD5 | a2a16102ccac4b96a5decf6bfd2c441c |
| SHA1 | 6dffa35ff59a6ce6c8283c88ac94c29a6af22e0b |
| SHA256 | a68c5a7ec46b9854dca0faa15a64bb5b998d7828199859968a353e7a5076911f |
| SHA512 | 4d540a031f3546c45a259abd95be76d09e819ad3e68f3a480b81a80c319eee40eab605217e7c795a3f980d0e21fcb60353273caa343cdd7f198bc4aac9792424 |
/data/user/0/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | 1c3b6d509aa3eea8608a0d17c5c5a259 |
| SHA1 | 4f06f9ad4d2836f95fa315faad346785b316a7f0 |
| SHA256 | d644ab4425734df48e52dfdabf1b4b157879c20ae3d3bda496c4f1bfe0a82855 |
| SHA512 | ff1216d0ccaff92bbd72f56035f75ffadb17166b5bfaed558b52fd7493f8a2201d7e96fdb7e5881351e6467eb16a3404c384435071c20fedada53f7a2f674f4f |
/data/user/0/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | e11508d350c851e5ff3f545f75b13340 |
| SHA1 | db5dca6efba82aef45e193a1b812cfdb80883e06 |
| SHA256 | 88d8c9eadce4fbd9b93b7400b96dbc534dc0d221f79a8a1a38e456e06ce49f6f |
| SHA512 | 0e3a2cd80b52f60fb1c070ac99cca14d4579499f1bc498818c57670fc4e79d9c75ecb06a3cd2df16510a3649203a613ea8489fe999cf9475b8558980cfa9330a |
/data/user/0/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | 7701a2e320f1128e58a7fc66afb9ea0c |
| SHA1 | a47e9a40e916c2d8565cef93a707bf2f841ffa9c |
| SHA256 | 8547eba9cf6e10e121d8cd1dc4fc8faade40feb7c994fdf4ae0fd454572934e8 |
| SHA512 | b32ad5df50939dbf1e2c12011624e4086b017614e52bdb6de4534a1f3c1ed5b244282ac3953eb08c70a3e020c35563846d853315ef621d8e10f966f0f03610ae |
/data/user/0/ir.ronak.soupha/databases/evernote_jobs.db
| MD5 | 97b1fe13c4fcce301b6e90ba0760d66d |
| SHA1 | 845cd9fc7582c56f10e118d371d1618c575b7c0e |
| SHA256 | 5c06ea920f857a74464c34177dce9b9a6b33cbc581fe2b798c63fe2816e6356e |
| SHA512 | a459f443a064025b1a10e6fd981057e9c0f2ff32d801b7296a8f3e0b088e9d8000523cd7d575c0edd4d5b4b60a8d00224565c3bbeefc6cfb2fb04268bc6f3bee |
/data/user/0/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | 55c331993f559e97dbcf90d4aa63add3 |
| SHA1 | be5786472f3d9857b798ca1a5671f4b59c9249d5 |
| SHA256 | 8861584096fa98278ef4782f38384e9d058db5add2376730c58604112c1df7c6 |
| SHA512 | edd6ea520829147cbababd7bc295257381214e52eec540d04c587d5bddcbae7acae19ef367c66115253dca59eb87fad2c4c5e1865201b935b4d80b392ec3a835 |
/data/user/0/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | 1590b8a31f4d4a97f346a2fdf3ccab52 |
| SHA1 | 6bbcec6350307a575ba6a8e2546e4aa7c54d9b9c |
| SHA256 | de39cec412cc0a34df4064770dab6359b50b0f2d3715a5321952c6f7ed75f48e |
| SHA512 | d41441889809e57a4c5fa6b6fc7b4b51e6e0f23060c98589f79a3c3697bfb9948ab2346ca39228491554d25275cfde4d4dda0e828df864587646087f4b623f64 |
/data/user/0/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | c274f5f3bed806467cf58a657e1fcc24 |
| SHA1 | 1e62932aa765111277160eb7963ad2338d82783e |
| SHA256 | 8812210cf660debfcfe9164cbd36cf0aa756347c8baa306e941b3aa10a201c34 |
| SHA512 | 629902addf4182c91fd705506039619eb1a8de563d466a9ff511cced66e07ca9036ced239f262ef366a4207947a44a7dcc778e9585159de7f1d4bb6f23819ae4 |
/data/user/0/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | 267f869c45f05ded8d3beba248aac271 |
| SHA1 | 78fd318805fa867a809e6a86aa8579faf592e471 |
| SHA256 | 053f33437dcfa75c15645eed4b338a36d2ebf87b2a8144687b6d115140c2d652 |
| SHA512 | 455e0f2980a4d580553f5d656ee1c829b066fe01fcf00b133f531d1a6467a812018c10cfbd137e01617732acf697cc1c7afbb115452b6d78f8c32c78c043f2d0 |
/data/user/0/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | d02f42af176df48f173fd95d83e7d743 |
| SHA1 | 1f1a14078232f5c7cd15cbb2b54f1b33639e33a3 |
| SHA256 | aa56d573f1fddeee8aaf81f2ef1e9b3907a9d2d13b15628896ef78d37e84cc96 |
| SHA512 | 3a240283b9120004b9dfe0827879ac7d4052a300a6cf86d636d7e409045da66c7bd066a4f0f203ff564d5f4e07b3fd0808b07b65723ee35a1ed62f54bdbce251 |
/data/user/0/ir.ronak.soupha/cache/1582435991586.jar
| MD5 | e8e0527a01aefdb89afd2c508f131da1 |
| SHA1 | f1103e6b260c657ceb3d95f1b023af3fda8b133a |
| SHA256 | f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce |
| SHA512 | fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34 |
/data/user/0/ir.ronak.soupha/cache/1582435991586.jar
| MD5 | fde2ee00cbd121cfab5290b078aa3ceb |
| SHA1 | e2b77d5320e155e413d040a8c20020962065b2f8 |
| SHA256 | 2897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685 |
| SHA512 | a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56 |
/data/user/0/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | 2b3703c8b01ea2e31ca4c36c3d2bbef7 |
| SHA1 | 7ef2829e02781192acb1b77a1a268abdce820855 |
| SHA256 | 5253293481f6e0ab3bae6af3efb47fab7c6cf606e1337117a0bba1928d1829c7 |
| SHA512 | d97c01961ed1abacce78b1f3ed979a662a82478664d9c8ddc564b301a3d21cfaccdb05ec7be0b631710009afada83d3ba74e7f014f437464ccd0acc5d8224a29 |
/data/user/0/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | 6bb85277d9d5bc45a4f01402d3825f68 |
| SHA1 | 22b9e1d6a52cdc06f7d029b5f3214c9b86e673d8 |
| SHA256 | 188cbe1af2f5e1c2b7f79385223d60c920c396a203c5903eeca560598bc0a108 |
| SHA512 | 04675381a48336fce18d63402b44a2c07fa7e35e67d132a6d69e11ba0af8cf7063e14d8a9e7d25e1cfb5e6fc841ba2441b7c3866123c00c8fc3adf821ab45538 |
/data/user/0/ir.ronak.soupha/cache/~test.test
| MD5 | 098f6bcd4621d373cade4e832627b4f6 |
| SHA1 | a94a8fe5ccb19ba61c4c0873d391e987982fbbd3 |
| SHA256 | 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08 |
| SHA512 | ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff |
/data/user/0/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | c27515fc6994ac92544b59be944f8db5 |
| SHA1 | 2e26705f3c0cf799a2b53b861672e87d77043b61 |
| SHA256 | f84e7699c2549eec06ca6a89414c5e25039afe29fe8e019aeea56af42c16ba8d |
| SHA512 | ee91cf7ee04e520b0cc2609330eeca732678e3f5dea9be94f15e0c0d56ce6a993c14f2395f66e1387838d46ce152ebcf970fdf7c99a5184ad50a28560f3e2f11 |
Analysis: behavioral1
Detonation Overview
Submitted
2024-07-28 06:52
Reported
2024-07-28 06:55
Platform
android-x86-arm-20240624-en
Max time kernel
48s
Max time network
116s
Command Line
Signatures
Loads dropped Dex/Jar
| Description | Indicator | Process | Target |
| N/A | /data/user/0/ir.ronak.soupha/cache/1582435991586.jar | N/A | N/A |
Queries information about the current nearby Wi-Fi networks
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getScanResults | N/A | N/A |
Requests cell location
| Description | Indicator | Process | Target |
| Framework service call | com.android.internal.telephony.ITelephony.getCellLocation | N/A | N/A |
| Framework service call | com.android.internal.telephony.ITelephony.getAllCellInfo | N/A | N/A |
Acquires the wake lock
| Description | Indicator | Process | Target |
| Framework service call | android.os.IPowerManager.acquireWakeLock | N/A | N/A |
Queries information about active data network
| Description | Indicator | Process | Target |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
Reads information about phone network operator.
Registers a broadcast receiver at runtime (usually for listening for system events)
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
Schedules tasks to execute at a specified time
| Description | Indicator | Process | Target |
| Framework service call | android.app.job.IJobScheduler.schedule | N/A | N/A |
Uses Crypto APIs (Might try to encrypt user data)
| Description | Indicator | Process | Target |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
ir.ronak.soupha
Network
| Country | Destination | Domain | Proto |
| GB | 216.58.201.110:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 216.58.204.78:443 | android.apis.google.com | tcp |
| GB | 216.58.204.78:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | myronak.ir | udp |
| US | 1.1.1.1:53 | myronak.ir | udp |
| US | 1.1.1.1:53 | myronak.ir | udp |
| US | 1.1.1.1:53 | myronak.ir | udp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.179.228:443 | tcp | |
| GB | 216.58.212.196:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | ip.pushe.co | udp |
| US | 162.243.147.245:80 | ip.pushe.co | tcp |
| US | 162.243.147.245:80 | ip.pushe.co | tcp |
| US | 162.243.147.245:80 | ip.pushe.co | tcp |
| US | 162.243.147.245:80 | ip.pushe.co | tcp |
Files
/data/data/ir.ronak.soupha/databases/__pushe_base_lib_db-journal
| MD5 | 16b5cc9269314f153067520d22bbafce |
| SHA1 | e9fa3371f0888d64bdf83e28036e978e4fc31519 |
| SHA256 | d5e05251c5b99bcad38fbf04b55c1da3d81377f25607b5feff4b8a291c379fc4 |
| SHA512 | f5355c43e34cde92f0daa614f0f395570c2f29e88ba2b73fc1d751d84bed1fb7cade1ad7919d49ca9e1f6247b151a4447ea3d75f84df83ecc2323e23fd30fcaa |
/data/data/ir.ronak.soupha/databases/__pushe_base_lib_db
| MD5 | f2b4b0190b9f384ca885f0c8c9b14700 |
| SHA1 | 934ff2646757b5b6e7f20f6a0aa76c7f995d9361 |
| SHA256 | 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514 |
| SHA512 | ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1 |
/data/data/ir.ronak.soupha/databases/__pushe_base_lib_db-shm
| MD5 | bb7df04e1b0a2570657527a7e108ae23 |
| SHA1 | 5188431849b4613152fd7bdba6a3ff0a4fd6424b |
| SHA256 | c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479 |
| SHA512 | 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012 |
/data/data/ir.ronak.soupha/databases/__pushe_base_lib_db-wal
| MD5 | 75e64e1c7ba7a10c8a7b96d56cf80202 |
| SHA1 | c74703fee6135691d8b5b5313661023d3665272d |
| SHA256 | 13ce92cf198cda19b75802e781653ed483426c7c5fa66fd1808fc2c225498bdc |
| SHA512 | 2b405a37d4f191426f612feabcda4949d4d3f2105175711e4528813f2b3e86c981a215e7540141487e8756841f675f9a177c77caf4bdc9f84224c13913709210 |
/data/data/ir.ronak.soupha/no_backup/com.google.InstanceId.properties
| MD5 | d0476cdc2a6ecb6cc87660b18e1fd010 |
| SHA1 | ed397f59f3e3ff23fa529cfe93a546916b2d0c43 |
| SHA256 | e3e1916d31740ec89da6c55eb96d8ac49dcaffca5d9b7754725eb3e64de34887 |
| SHA512 | 472e72c2927f40ed2483bd950de25096e274359bde8882104e30fa51788a3f225a99030d8017e82b912c8e17003b16ff16f96aaea198c3810f8ec1654c1dc2be |
/data/data/ir.ronak.soupha/files/info.db
| MD5 | a2a16102ccac4b96a5decf6bfd2c441c |
| SHA1 | 6dffa35ff59a6ce6c8283c88ac94c29a6af22e0b |
| SHA256 | a68c5a7ec46b9854dca0faa15a64bb5b998d7828199859968a353e7a5076911f |
| SHA512 | 4d540a031f3546c45a259abd95be76d09e819ad3e68f3a480b81a80c319eee40eab605217e7c795a3f980d0e21fcb60353273caa343cdd7f198bc4aac9792424 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-journal
| MD5 | 924f041b1738fde8d82247540452bbd5 |
| SHA1 | d881ead3e00245f4989d98e08d6e589bdacd66f7 |
| SHA256 | 13a2a95028497080c62c3a27be0cbd50c6feccc5e9760aa9f9fe5b40dd56f480 |
| SHA512 | 43301c797689ed67ba1ce6ec4a6d2ab854224b8d0dc86e9595ad65d1b260c8419a9a69a1455a81bdba19b7cd74b18d93313ff545963feed321d16dad6d1386d0 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | 7237409e0640cfab7bdbd429bf821a3b |
| SHA1 | 4c3da934842f8d4835dfe2a9c275a300e5123309 |
| SHA256 | 5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa |
| SHA512 | c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-wal
| MD5 | e291cc972e5f799796713a562cb372c6 |
| SHA1 | ce9c32b5fe627a2b4d35878cac3aa70f20999e71 |
| SHA256 | 8a225db5d673ae9b36aa8adc5c6c7c7244db9d25177ec1363f5bc896b2d0d994 |
| SHA512 | d4741ac139a55e90759f17d51317778f8541331b1a8580bd69fae6ea70ba020cd5502540131fb92cab98d4140b1434b6f1755b4da5b4a98307b57f28d0b0790e |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-wal
| MD5 | e87fff8f8896094d1135cb5cc4a26418 |
| SHA1 | 022defe781879875b74a9ba2b6c708931c795e69 |
| SHA256 | dd0b92433b5090bef4639b3ae6530fddb50d23fa3adeb1662a66a4698a39be76 |
| SHA512 | f3ddfe0dcab890f4397847c63ba2023d02167fa3dc469ba7c789324b988f45d55d13ef6b9836c724f0be4b672aa84dc5c8c9981706da05f8be2e64a21b0f36bc |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | f9be3d5d90b5609230c8e0745a2ff405 |
| SHA1 | 68e5b307f88a2539d052814500e7eb83d50f6edf |
| SHA256 | cd15309f73d3c286af7cd98302cec282d0fc8a6173dfaa94ef05f732134a0f69 |
| SHA512 | f406521b1a61a1f1eab931e345e3f17aa515ce7f5d1c058bce2ad871faf96a24a596a716c3ead08eb3a7e9ca1ad6401efb0f45f4b2dc6fb76296d464c00165bb |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-wal
| MD5 | c0f7f3167d9fa631d5b2fcbe516e0b75 |
| SHA1 | f0ec6933585acc4f2217a81d92ad06093946a7ea |
| SHA256 | 3c14e0b1fb5d2a998f7d1458bf8e7eb5f3e89d550e685ed07f0cee6bf734a30f |
| SHA512 | 53ae843e5a93463c956546b29ee0507c474444a4cd009e7b0af3e2f7b6080223ce0813a0f20d18ff52505acd169d973bd1a7d8610b3473c9ed2ef3ff5510e077 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | acd502a0ae37a3f00db863e99560a330 |
| SHA1 | 90d2a72df99dde84405b2b249be8cd1d6787d515 |
| SHA256 | fd4b2f7ca696b4f3c96c4013b938377791a8562fe868486c44fd933a6ad3abd6 |
| SHA512 | 03de2c4160b8b6000fdb609ca160b49a8cba249b8a119becedf164450cf41cb84b5408ff2bd1f002404bec08695a77d1debfa420ba72d6cdb0165b319cdf9b93 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-wal
| MD5 | 33ca0dc7acb10e3d6c1a981a4e955f64 |
| SHA1 | d59a8830a29d7a9f4975680ce8c466a8433ca7b6 |
| SHA256 | c8d6e9cde8fd84855700d0c2a6e19763aad6cf0ae0526fa2ef96c9247db50f6f |
| SHA512 | f6a19c35973b3f63be3ebb1d986a8b7e9b69e0788f637a547c5252585f336ca3773e9b3dee47837828f758e819bf4b86e9ff97e40b6af72e8537035189d2eaa8 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | 6288cb42c83b7753d399e03f5b89d2a9 |
| SHA1 | b0d9392bfa49b7cd8721b42a7de491d7bc7ce6fc |
| SHA256 | 6a013a982bd9496722c484171024676d72289204702ebad45b857ab4f2036f7d |
| SHA512 | cd9fa944b19d8ba3e37fbc7bec093008ef46132c71740dc61d91796406be41c3ac9642b79503f46de3f75b1bcb8e0ac0963f2d768b1711a11513f330c42d564c |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-wal
| MD5 | 7694d45db4124f15ae42333484fadd00 |
| SHA1 | 32e9bfbbf82715dbacfc09bcf3bcea430c697a65 |
| SHA256 | 3f685f0622e43ba4a2c77041837189d5bc2713aedd7111289004d5207a49d83c |
| SHA512 | 5c255c091fe6f264824ae32c5ecabab1b675abe786f9a69bb59ce260edecc7549b330ebd66b4c60fc7e9b126e2147fccd84d3d891ace8e5316fcd2ea68abca74 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | a0400ba231402010f2c3be3058cccd17 |
| SHA1 | c8d6883f6c024d5b88183a5b3b6ebc5db0dbedd2 |
| SHA256 | 740a57bbbd093ab76357104432ecc12c8c8ad3372b1ec73266bd5f8d36c2ac7c |
| SHA512 | 467140564430af06cd1a10c19184029c517bee3e47e544ac27fba35890156709bcdfcf530bd2952905c1c2f23bcf395ac3491c065e4a201d6d9f4b313afea1de |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db-wal
| MD5 | 8701e3333d6dc4fc6b0a22303c57b142 |
| SHA1 | 38b149e8e6319171413db3664c0dc909b59608b2 |
| SHA256 | e8765d7e573bb07bba2a166cb3ba8a9173d6aed0bb79e9f621fa5c36a2582a38 |
| SHA512 | 1a66a6b67b7807892aacf01a76dfcdff7ad88103cd35561a637712c5fd916ee59f37f431ac0d34011cbd7177caa30e8fb7239cbfdab1fbd6074a76cc5cf980a9 |
/data/data/ir.ronak.soupha/databases/google_app_measurement_local.db
| MD5 | ae40eed41112b3a4aeebcd6aade5f5f2 |
| SHA1 | 7eb0be0aeacc160ed4e8ab173d9b42b204be6de7 |
| SHA256 | ef05bab1a95992ea26046167012f1d67767d18e08f60e416f659027fa0b41855 |
| SHA512 | 9cc6d59cb015beef6527c185ae271a12e487fa055761c525d8ee946d555fe56a631662efb73270f44d65dd02ed95012849a8572297f5c5f7ca040dd362427d2d |
/data/data/ir.ronak.soupha/databases/evernote_jobs.db-journal
| MD5 | 14c9fa11f55ca7ce9a137519468014ae |
| SHA1 | 786c82cc45bd20542459f494ac39d28b69ad07b9 |
| SHA256 | 9cab9c937ff51e4c0c68d32c1a9558e850195ce1938c38322bc4f9116d013314 |
| SHA512 | 06ffbe7d4e17ca0f282b08a063ea35f133d09cf6c9362ebb200f464a1ab8d7f6b7bcd23664dc87f713b118fae39f0bb13296085e56f584bede810ea2ef3b2487 |
/data/data/ir.ronak.soupha/databases/evernote_jobs.db-wal
| MD5 | 04ed18dff801c0b8071fe09985e23e36 |
| SHA1 | 33e7f5d7da5263f41de33782f416d083636daa5d |
| SHA256 | 287fa56e2e32d59835e84b0c3cc620b1753a296f031f5f541ba04011dd1e5685 |
| SHA512 | 80c84f34984bf1e31d4fab2d1f86d0712ce56b4d4b39777779193afb5763f788df40f3233de2da977e1906cbf5e685891905d04a4fc63eda4e25eb2a94ef08e9 |
/data/data/ir.ronak.soupha/files/info.db-journal
| MD5 | 087b78895de12ba7e0ef393210709296 |
| SHA1 | 1be3af0430c9919b67db95db84ea89ce85baa326 |
| SHA256 | 664aa35b33382387fa88ed924b483b74efafbcc9ec829b9cca4d95de40037b6c |
| SHA512 | cf8e6997c7112254920ca2b6541bee6776b845172b27cefd5ec80296d1bffc40982bd18541469250c585d486fbb3fc77b83c4c7403d197ac569b278a7c79c643 |
/data/data/ir.ronak.soupha/files/info.db
| MD5 | 8174af603e0fa344b4e0e936ba07f7f1 |
| SHA1 | 9cea23d8433c831044e17594c47ac24079311780 |
| SHA256 | 945c11ade16d516463c55369d60e026b0d7ddfca8f603c11ab3ab54fb58fa4df |
| SHA512 | 01d2f932b3c625ed2f714b3452252386214a05ce32b3c7779bc0a2d00d44d13aaa54a8b11f1de213855d6819bdc836a1b7eed3615a5ab9a64ffc720214be0a06 |
/data/data/ir.ronak.soupha/cache/1582435991586.jar
| MD5 | e8e0527a01aefdb89afd2c508f131da1 |
| SHA1 | f1103e6b260c657ceb3d95f1b023af3fda8b133a |
| SHA256 | f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce |
| SHA512 | fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34 |
/data/user/0/ir.ronak.soupha/cache/1582435991586.jar
| MD5 | fde2ee00cbd121cfab5290b078aa3ceb |
| SHA1 | e2b77d5320e155e413d040a8c20020962065b2f8 |
| SHA256 | 2897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685 |
| SHA512 | a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56 |
/data/data/ir.ronak.soupha/cache/~test.test
| MD5 | 098f6bcd4621d373cade4e832627b4f6 |
| SHA1 | a94a8fe5ccb19ba61c4c0873d391e987982fbbd3 |
| SHA256 | 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08 |
| SHA512 | ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff |