97b58fc8798526bfea35ed6ff26272263d332554a75672a3bc54a0a56cbafee3

Analysis

max time kernel
92s
max time network
108s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
04-08-2024 01:15

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6461851c092d0074150e4e56a146108ae82130c22580fb444c1444e7d936e0b5.apk
Size

3.3MB
MD5

b731343b083f999ae0271d19ec92da4f
SHA1

05e5da65faf6fadb2a3c8dab2eb3d888ca6fad9a
SHA256

6461851c092d0074150e4e56a146108ae82130c22580fb444c1444e7d936e0b5
SHA512

84bc70e927af425b430b7a79797e5207eb6b8d33892f2b37c80e3f8fcd987a70a8e44dfccbd3b356d98e6ed413ee1dccc42211cbbe4311adb19579db6cd46eec
SSDEEP

98304:IEVF6aL7fDW3v0AMYfccAYUMF2yIOcX3i9MNIXcK:I46x3vKcAUGOcGMK

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

ir.shz.shzkisi

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	ir.shz.shzkisi

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

Processes:

ir.shz.shzkisi

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	ir.shz.shzkisi

ir.shz.shzkisi
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4261

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

Filesize
16KB

MD5
35dcaf83f6fa838409fa50da369f04b3

SHA1
4a000c7472a0e7572e5556f33653758adec6928a

SHA256
2331288c54ec70c709e0e548df559176ad7b977f26807fe0710cb1d8db0bdb2a

SHA512
584a644fb40a0c745c2b8d3eb5c597dcf84f8fd12d8fa9e74cc8d743e4820363c928207d731f76c477c965bf59a1d91d8649ce69a6b03632ba31b77bb09c33f6

Download Submit
/data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0ad8b43e4c6add9eda47e2f0a38f7c1b

SHA1
53dc66769db12bc3a8ee5547a0262aca299c4ba6

SHA256
0b7ae2416ca0ad414f5cf0ad01fa103330095180570b1178c5703711782939b8

SHA512
847954fefbe97eb554b936777c8a3860e6e7edb7174cbc7fa7783770a881072af8711405255e4c614efedba1d654b76aae11301c433040a30f48dac72a6015f8

Download Submit
/data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e84a5af78d9be98d5f70f8f64ed633f5

SHA1
d55d6171383b973bd159f4a0cd4dcdb899124560

SHA256
bf5fe063ce382dd238f7ea9a34dbb4dc95a8a5012f942216fe188723328ec5d4

SHA512
8d755d1531e494abe889ed98179d3b889a7a08fe746d821b96f2e67aebd9edb6696a0b5ac946844d36bc9223bc02ba8f0848cf7476439f474b0385780ff234f4

Download Submit
/data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
88cd3e1e3c0eed7123b17ea350e51f7a

SHA1
b39a2738087634134bd228cb3d518e999b379a48

SHA256
feb853bad4f38955be1e0964d0137c160119127c3a6432710555ebdddcb37068

SHA512
6452e9675a4ee8d1e94277484fce2d908083cd14560d9ceddf742284cec0693e23cd34b5aa92c43cc18534f7d74ea5f588799fd6b165109530ba20e24133b8a3

Download Submit
/data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
17a5cd90ae320d6836a69e100d85f30c

SHA1
69ca3bcbfb6f6204d4425ef94023c2449639aef0

SHA256
f4986c0a035e9da0ce80d521f487ed771dcb953e1f1f4d8220b7c3a44a6b28e1

SHA512
3aaee37b96d5f7441b04fa1259fd5cbbcda38fc3c32d411d90a1946f2d082d781797e3d1f33a8d7aceab812eb029d812fe5ced7da817917a3dc80f24dce907b4

Download Submit
/data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
c4357380e9409b697f6f177146562068

SHA1
5c3f1a4e8bae126d92f1dbe5eaffc13b370048aa

SHA256
2b3701b762fa881da9adb32f40b9c656e12fc6e666af633b295d7018d7d9f130

SHA512
bc7c0f81bfdaf1d5591089caf99509375a35f0991d40cc657a4b5a76bf0f90634e5277c0dbac1682f2efee4661c9e1325298b0966c213ada977fba53783aaa4b

Download Submit
/data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
5127560260d832df1e29b547a1a60c47

SHA1
a4bc5ac603e113ff5f7c982af5e63b10dbe3e2b0

SHA256
7ff344d27784be7fccf3467ec55bdff370760e5e30f9424957f40cd72901757f

SHA512
d7a58e723c9d26a49d914a1f280a051b3ee18fcda52b864cb9972ef22c1f2e3b3d0590a792c74de18c1c23f70fdaf4b4f11d302c1e97dbcad4e3deb7c53cb313

Download Submit
/data/data/ir.shz.shzkisi/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
10b991a08b38cf9c7121cf704dca5dd0

SHA1
57438319807b9197abc9700cf340d8fdc8a5e605

SHA256
8c2b7b1aca99e5c0ca6c027901960e3390000054d7a8a4ac61f96e94c5e285e1

SHA512
7a88f338506ef0d1f456db0b4dd53da8bd781bf6b4980982920bbb684be4b8f401c841f24e56c8c304f43eace32421b8fcfb155513c632df55992d1dc6752015

Download Submit
/data/data/ir.shz.shzkisi/files/PersistedInstallation4340598172048658594tmp

Filesize
90B

MD5
0ed3a2eb498bb74e01cc6ff988352077

SHA1
2ddce81289d09ba6efdd96cd6e8770d2b8a0bbf6

SHA256
20082d64f6533a6d581b7a9405c9b3473db72beed8ed4cb8a21d5a0084143deb

SHA512
08d85ecb416897b9cc816dc4be695465a49ac6e40b3eb424db7b76ece34faf14b50ad716b6399acf4d665cda0bc5185da83d721075a61a92e124d426766ae12a

Download Submit
/data/data/ir.shz.shzkisi/files/PersistedInstallation922316469234832456tmp

Filesize
569B

MD5
6e8b309cc921a0e8803cdc10f43f8f85

SHA1
9ffba11dc21b6654f613d91e2dfa6c3a513a4292

SHA256
ace7aaae74f46e85cc5f783d2d5999fef15cbf36f3bae6e10e901745e17d36b8

SHA512
7ec8794b33b0879b91db0cfb752ad946282db4f2da6100aaecb5480a3f4890ca18cb639709ced4de2ee7ae98a3026f51532fc8dc2afeb53dfdb3b96506f76076

Download Submit