3b6e69e9a82be97453153fbb7a76be34d5a565fc14de119f1c7898b9f6404913

Resubmissions

13/08/2024, 19:37

240813-yb9crsselc 8

13/08/2024, 19:35

240813-yamglssdla 8

Analysis

max time kernel
33s
max time network
49s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
13/08/2024, 19:35

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

bitslifeapk.com-BitLife-latest.apk
Size

225.1MB
MD5

b3272ef19963c25099cafc245b65a090
SHA1

113046053f6a213135889e256b3e2ef2720ae76f
SHA256

3b6e69e9a82be97453153fbb7a76be34d5a565fc14de119f1c7898b9f6404913
SHA512

106a94593cb1f36d1c00eb137318410423d915132338017d729fa50ae096827d36d40e828fafba1da05d0c08d245e13ae271c8517384e9f8859d3884717ee857
SSDEEP

6291456:vqOG2CHjHQCLfyyuDdPn49d2woRdF+2qf+l+3:7aHjHQVpg+NPE2qAO

Score

8^/10

discovery evasion impact

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 4 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/sbin/su	com.candywriter.bitlife
/system/bin/su	com.candywriter.bitlife
/system/app/Superuser.apk	com.candywriter.bitlife
/system/xbin/su	com.candywriter.bitlife

Loads dropped Dex/Jar 1 TTPs 3 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/system_ext/framework/androidx.window.sidecar.jar	4491	com.candywriter.bitlife
/system_ext/framework/androidx.window.sidecar.jar	4491	com.candywriter.bitlife
/data/user/0/com.candywriter.bitlife/[email protected]	4491	com.candywriter.bitlife

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.candywriter.bitlife

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.candywriter.bitlife

Checks the presence of a debugger
evasion

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.candywriter.bitlife

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.candywriter.bitlife

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.candywriter.bitlife

com.candywriter.bitlife
1⤵
- Checks if the Android device is rooted.
- Loads dropped Dex/Jar
- Acquires the wake lock
- Queries information about active data network
- Uses Crypto APIs (Might try to encrypt user data)
- Checks CPU information
- Checks memory information
PID:4491

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.candywriter.bitlife/cache/emb_config_cache/c7c1a77733443b2631e93149bc15eff7.0.tmp

Filesize
4KB

MD5
fbd303feec8dcc48b2eb6697aebd65e5

SHA1
2f914da9212f0676a4a555ba778894fb81ece7ab

SHA256
0f125b5bbb0058eeb1814cbae6f2187a89fbfb4abddd378b0e48624cbe8e8abd

SHA512
175fba101b38fc8ad0c84ad91d442bac117e59ca6bb4ac32f7cdf04d462486d8ffeb96bc7ad4f6cc5f94b0c2d75d9f80b9c102acf9511968c86ff4cd6ecc4c2b

Download Submit
/data/data/com.candywriter.bitlife/cache/emb_config_cache/c7c1a77733443b2631e93149bc15eff7.1.tmp

Filesize
226B

MD5
3aec9ddcf25a92c5923ce334969bf73c

SHA1
90d3e023d74c05c1defce233411fc15ec93c9f57

SHA256
a8937281716bb374ac0b851b67c95e5511bcf953b138662f0b1c8380ae42dee1

SHA512
59ebbb25c9544fb1232ed48f50a7fcb1207a04bb1203b59b0ed9bca3ce8e7ebf9a2f39bf36d86fbdbb485201c075f6eac1cc3a4c67274471bc0442296f2cc69d

Download Submit
/data/data/com.candywriter.bitlife/cache/emb_config_cache/journal

Filesize
123B

MD5
0eebe6bace4bd4dbc65bf0ab63346756

SHA1
49689a6c5e4113dfd5b079bd9a53d936cdca67b7

SHA256
4af4aa7acac779e6ad17649c6800cc1e8985a60d6c3bc4b529d551a7146560b6

SHA512
4d25d6c1076108dbbf7682669c944d06c4c62f78a12496ec74292d8f9e9b06c8f32ebd53533fc272012018c0aa51c8fb441664dbcd5cf659904a82e29b04a63d

Download Submit
/data/data/com.candywriter.bitlife/cache/emb_config_cache/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/data/com.candywriter.bitlife/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
f420b26c985f245bca02fd6dbfa27ddf

SHA1
a1f92a4b6824b74b31b907a3f97098344f904c69

SHA256
62672510c241104c9fab891f17b61243e0adf54a4b279a2d95ca5f496a4c87da

SHA512
5592a19e28d9697a38279d5092406254fdf35f385473f51b22787163b47e682a0d8ea423b7bf773ae6a716962635874b1e4d282ab977d3b692f6625a2764fc6b

Download Submit
/data/data/com.candywriter.bitlife/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
d05d958110fa56aa9912537e3da4f0bf

SHA1
8c3e8b1ff965625801defa36bba8e81d29dec262

SHA256
5ca40fbef653ed6017d595a279cd210cd09404bf5ab718667f17308d08e9e62f

SHA512
3f01b83818880e1b8de805a4432ed7a9ac87d7d957257297028c8a91ae49749447d5f65d5b6d0235bfc54afc19a6ae87bf1ddebb33b5454cb9d3da1eb88ab6da

Download Submit
/data/data/com.candywriter.bitlife/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
ef40e0628b0cfcb57d8cb1bb3a4fa941

SHA1
de276015b675dfefd2699b1f335c12ba63cc4aa6

SHA256
58f2544be7242cdaf4a95e941bd665810f9e83cc8599ceb6a45e4b26d0831895

SHA512
e2106d82d6cdd33783edcad596e03444ff158c8456943d4a07fa0e12bf56e8a8bf168ae89fd5d0929fe2afca310e180f4aedd616afc27faea4debbb4de1ddf1f

Download Submit
/data/data/com.candywriter.bitlife/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
5589782d884483b4627be3ea9522bb2c

SHA1
b15e001e6b2afa340eb12c547ca2cf6c368345a9

SHA256
013074e9dc2754eb32a264220b15940a84780228bbe000fdaca7416c86cc14e8

SHA512
f488ecbc906ceaa4f9fd09d7496ebe513dfa9e3ffddb97b1d0d07e7a43f724e1a26e70a71b9d636802fc39a0e385e0a84751d0356099af200de0e2c4a914ffb0

Download Submit
/data/data/com.candywriter.bitlife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/com.candywriter.bitlife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eff6fdf9d707ec1645cd9089526f9555

SHA1
d8eb4d8eeff99a4e04cd6299334034da6407dd50

SHA256
d2bef0f1587a51c304fdf6bde4b7803c0b6897a306a5b4035941551de40f126f

SHA512
9e4a52810ee5f54447491666f2dfc62ae916fb287188d9c317a58f63299d5b39a4a49546ecd92b114c3d948ffd347b86b6fa9d4130df3fb19c5c4a18122db495

Download Submit
/data/data/com.candywriter.bitlife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
44ae41395e7de0db3503d47b439cecd5

SHA1
951bd7fc39c9d09f532db70eee456be75fb2d810

SHA256
954e47f97ff8a9b2e656beed28e7b58c6249aaee19143c3f4769601db5d63278

SHA512
9012953c71ca17d86d28107f0de7a94c81183fdc4a5b66be5cded9ba82eedeea557bd6562c86b90e330f728b4d81c425e6c75bc5cb3ba2ab045a7ec9d062e9db

Download Submit
/data/data/com.candywriter.bitlife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a1b2a85bf569392db400a99a6d98fba7

SHA1
a8abbfce70df0c45ac3fcabbae97284d2ad87aae

SHA256
fb740d32acaf9b1cac0dee49902ff659cef408da86bca217da411400e73e5661

SHA512
af22f87fb5725f4eebe43b27e2b667405577e778245bbf306bfb7f41d4f7c7f818b82293e709dee9f7feb08e91134a489662d906a1d736eb5f1de855ea9e44e8

Download Submit
/data/data/com.candywriter.bitlife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3805fb0c8a91754b0a07bdff81104580

SHA1
35cf3afe538121d54c5195613abac8b1e27731ee

SHA256
049086bc1e0c8b649f01c5a2b9028054d1651d107878c0f27b2f72a318e20a9a

SHA512
ca9cd9c665e189e825d72b0fd0b692e281ae61d85a2fc7cad32a56fca7d6573703258a09cc281f51b6983d17a1f80bd53cfa1be0c96894ed634aabf0be698b9e

Download Submit
/data/data/com.candywriter.bitlife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
48d7c9b1e14707d395613d557b39d272

SHA1
fb039002b5a489274e775e6807b3ccf119d6f1ae

SHA256
bfddb45f199c5bb8257fc3776f0425246740521b0baa55372f2a29911bb60ad6

SHA512
c5318a199ce99aa1f9803dbef42a3fcca6e8d1508129e4de4ce7509028b9ac2a7c9578e5e0bd40e91c40cf5376356628082a3570c179de45685dcd26f15f9b63

Download Submit
/data/data/com.candywriter.bitlife/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
8447a4054e8cd4ca0b958d70a99a1a8d

SHA1
3b35b25e23886e440be19ab128ec17121bdd4aa8

SHA256
aca1a2e0104a5c500f6797c784f5fbe1a64d24e755d62cc4025517489633f00b

SHA512
7a3b0578fb5cccfac1dab8c66a32b92586a21a85efa5f5e6a50113861930ec912e741354ca81b1d06843bdb68b8c7e0e403ed72e137b10bea4e60039959154d0

Download Submit
/data/data/com.candywriter.bitlife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
942d965bf598c2ca6b0f71b4896cde2e

SHA1
c20cd328efb08d01078093d5c10135d3ce23bcda

SHA256
e2a39262ca98a340df96c4e5fa2d1ffe474d80a247fd66f89e0d972157006094

SHA512
e670f0aafc047cb0d6bb4b8d73c015f7786e4884f73be6828982c1036c4512e3519805f96bb9bbef546f57f0eefcd051af2d9934250eb61936e917cef305468b

Download Submit
/data/data/com.candywriter.bitlife/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
84e489d9f49e49962af1603310ccfdf7

SHA1
c93d3535bad2c3d4e5bfe74c6323403ef39fb3ca

SHA256
f34a09c75d0ad812f67a87e50a8b768ac4efc9ed7e9ec9397e6a34d884c61588

SHA512
cd9e57f4dd56bc272cc659e586fe7105e9831af1542eecdbed232b8c970e144355fc0dfad1ba5f426330663e73bb61433981945aba171381a094a56a821c0c18

Download Submit
/data/data/com.candywriter.bitlife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
fda0b63c162621387d9aea630afb35ae

SHA1
6368c21b09151e80b18bca7a0f691412939dff74

SHA256
20048bfe314796eabb504021ee90c1e4b8b0aa02066411830762fdfa245133f5

SHA512
4770374badbf629d798cdf072c309ea4ea42b02936dee42a5dfeac834ee418c75a4759e799a69c22d18014256b97345c1e119e53fb508fc6f1b72917dbbdabc9

Download Submit
/data/data/com.candywriter.bitlife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
37931e5ecf0ceeee1561feb013d484cd

SHA1
2ce5083afc3f400573896c125d8ddac26c05234f

SHA256
bbaa4625ff633710ae4d0b1b1e3728b7ae6ad3d9d2884facd8a23fa60b34761b

SHA512
fbaf3e7230ff21ba8fede242fabcd8cdb10669f084a6d4e70f8e5b999be24a836850a63cb33957168da556917e47c5b8978f501c2821e76ecb2fdf59305b46f0

Download Submit
/data/data/com.candywriter.bitlife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
903b37832d2ca9e0f28db89a671626f0

SHA1
604777c2e8344d26a1fe464d6c889be7e39b6a36

SHA256
2a88ffa804e2b01df2f851e68cbfff8ba61f8a8361d41f80ae975d1cb1b2bca0

SHA512
c49c9c647e57c0b94d75d777dcb75abb5a62af1002c442260a1472018ae6a3d0ca3cc7ceb84dd3926d94da3c4b5d0e61a0339f362ff4b10dba4eb6e2042049f3

Download Submit
/data/data/com.candywriter.bitlife/files/.com.google.firebase.crashlytics.files.v2:com.candywriter.bitlife/com.crashlytics.settings.json

Filesize
719B

MD5
a9e245a6876ce82325dce62d9af0c017

SHA1
85c569e337e2aaff472205300077908a02c37bfe

SHA256
080b1751f816ac8d5055c6b77761f4daa0a71bad140d2b9e80bd8e146a822920

SHA512
e9f4bc6cf445f165d562ed97ccd5d59d47eb6d5bd967a6b33a27bad1ab41d7a37f3736e93966c34a1fca72c052a5de5302dcef0391ff91dc8562cc5cf3500673

Download Submit
/data/data/com.candywriter.bitlife/files/.com.google.firebase.crashlytics.files.v2:com.candywriter.bitlife/open-sessions/66BBB5C602CB0001118B5435470E7186/report

Filesize
826B

MD5
1ffe9d12405ad508cfe65bb20403011f

SHA1
2b7b129341686a7fe02c222694486ed3f9afcff0

SHA256
0c9282b5313f8b9b9aafddce3a8b52a99d6af3817a6f1b18e2952bd28db1ecfa

SHA512
718d9a7b1fc805bd673e8bb777216c00e6bda5713318db15cb992f602f7bdfd4a24c659013d21bab7d0fcfe2dee8c7d6b52d26af384ac9c901ce3bd0e2c5d207

Download Submit
/data/data/com.candywriter.bitlife/files/.com.google.firebase.crashlytics.files.v2:com.candywriter.bitlife/open-sessions/66BBB5C602CB0001118B5435470E7186/userlog

Filesize
193B

MD5
be4f8e9d1a65c1d850197cd6e9d5dc3b

SHA1
04488ac0c6b0dc3aac8ceda8e4291fc1698fd796

SHA256
6d9e8bf7aefe9902dd224cccc620b021e354b7f1d51f335fcbdc700fe84fa72f

SHA512
08e8a4876070f881620fda5856c61c22782dc264d082426785cd4093e8cddd3c94416d48880add89840bb411b2072f41b5a868015909b82aa0fe45878891e122

Download Submit
/data/data/com.candywriter.bitlife/files/.com.google.firebase.crashlytics.files.v2:com.candywriter.bitlife/open-sessions/66BBB5C602CB0001118B5435470E7186/userlog.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/com.candywriter.bitlife/files/FIREBASE_CLOUD_MESSAGING_LOCAL_STORAGE

Filesize
208B

MD5
a8e9b0f5a7fa60cf97217b429cdaeac2

SHA1
8f78dfb3fe2aaf10e305608a77a4fc4c9722a17f

SHA256
277c29e56cbc4ed7a0426f74543632362302609ba7d58fd83749631319518d76

SHA512
e2a68c9923d406ccabe1e7ad5f2600aac1087555d3848187163ae0186f9f61a322aea4d8b8fa5a276bc0416091ada1ae60ab46940471f0f25f70e0a5754550b0

Download Submit
/data/data/com.candywriter.bitlife/files/PersistedInstallation2826397014052117039tmp

Filesize
569B

MD5
1e3629ed56860705c5a103b398a634a3

SHA1
1bd61af1bf6a4ad85af8d0bb68f21cfd3b011c30

SHA256
ee766b63befc8905b9a4d8b8aba616927c5759cae6a073c05444d500b72ea59a

SHA512
754ad45b986fedf70155c7c34968b11936da6664dbb6409225de6c425eb68321cf14454741f8577c0c6346f1d463ed3b08a35698b97347d4010b5afa507f3187

Download Submit
/data/data/com.candywriter.bitlife/files/PersistedInstallation75637856243344581tmp

Filesize
90B

MD5
d4d3f8d9ac13880d2d4557be105b5602

SHA1
1df8b3bb48536a2d058abeda5194e240facf7e11

SHA256
69c0790757b951e8e83a76eaaeb7caa6df58032f7802a646bbe2194cf96eac6b

SHA512
d3665fa08e54136926de1f23acee5f3d543ad0fe351021feae6b6356a6247813ed3abe0c6a79432eaaa2d3e0395b256589ce4b2cdae32c2307a2b6e80872f6dd

Download Submit
/data/data/com.candywriter.bitlife/no_backup/.flurryNoBackup/installationNum

Filesize
100B

MD5
413a623b176411c6ea7229bb8533ec65

SHA1
e6bb0693c010838a424034dbc484634de2a33d8f

SHA256
23864283faca17bf3ea5ccd1eb540c54537160c6f8c1cb485c1f321418f7a0db

SHA512
393ffe3c2557c1e5296ca1a2c840a272acc2e548d0b585c9a7f28565c6b8ff08b37c140478da43ab9b0c9e2fd25d764c6920507bdbdc3ea49ad02681f93467a4

Download Submit
/data/data/com.candywriter.bitlife/no_backup/androidx.work.workdb

Filesize
4KB

MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/data/com.candywriter.bitlife/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
e971e9dee663c5461e0095310b179caf

SHA1
fe6bb2e6f3c248d5523a61afb21686a09ff1ba32

SHA256
c9b60e2a7e49d81099c57756875df06ae10d2e2c8780c9902a6898b7770bb636

SHA512
9634971ce39af6988fc8d8f02731de06e22a705944ebb2d9af5aee1ed416c62c41db60013ecddb061b52ba177d2a89ccb19154ad7672e4fc449f33c3dc9a39fc

Download Submit
/data/data/com.candywriter.bitlife/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.candywriter.bitlife/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
100a41cd89221ad71728aed38c8c7d8b

SHA1
17e1e67066f6db2fb48b5458578e2e46e849c7e2

SHA256
89c601351549fb2f46527aa51b9efad0e8350583db4b03727e50d0f651663cb5

SHA512
1c4a23a4770d4a96bbe208cb57e81680bbc89610af64b5b032807271bc0ac55c165229bfd2c9bf9f0361faebe6c0a065ab8a1711090ba0f3baa8c1f59a6c734f

Download Submit
/data/data/com.candywriter.bitlife/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
92f8f4ed420a1d35ea185ba27bbe3b9b

SHA1
75b6ee0d5f40c0e2fc1c4b38c86a605eb497e59f

SHA256
29d1450c2985d7bb6cefc79bfd3d27465061e4f9e930bce72c33dcbfe0e0f95c

SHA512
c970257239eea63040dcba62fd32558cf2d386361e0c1f0098e3556c256bbb086017ed4d565eeef39c6a1872bdef7fba43dbf72bdc602a917b46aff76bfa1233

Download Submit
/data/data/com.candywriter.bitlife/oat/x86_64/[email protected]

Filesize
1KB

MD5
3b6598ca86ef41a9d115e1b97cd2fd07

SHA1
b2d5714ae1f6b74ebfbfc279b3a91d3372b81faa

SHA256
d2f8fdae05cb326c1e84a1e412f52c4fc688dece81ffdd414fc47cf794eabe58

SHA512
af70cf855bf0cff31dee532f637b510e653a280c208227c8f91c1dfa6344cc1519fedc9d6942eed011bb98eb26692e304f3b9099da9a508552a6e236a4204ec7

Download Submit
/data/data/com.candywriter.bitlife/shared_prefs/com.google.android.gms.measurement.prefs.xml

Filesize
796B

MD5
76041599be9fa6c67a901e7dbcb5334e

SHA1
7f8d8eba3dea4603e94b1ff88a2102009b612f3f

SHA256
5156b4da7565864112385f88d4030ab996a5fe142e74132d4be65cbe4727c671

SHA512
275dfb7a5e7a7671cf57fe45b6031bc99cc05c949923e28c10e2ddc556f1b8d15d1aa7ebfc578493dd68461f50134c1f9880dd2e3964ba0d14863433a02bd7c4

Download Submit
/data/user/0/com.candywriter.bitlife/[email protected]

Filesize
3.1MB

MD5
9b8164be4f0ffaedadc82125e5346c14

SHA1
c4bf7a6383958b493ed5c4dd6a19862d366fca4a

SHA256
8e632284c9b0180ef28e309b4b0f282ef608cfb9d9046df899d8bdac227ea9ce

SHA512
352b3e9ef70839d0850ff7ca4a1f19f3df546412ae5cac1243a80588e573fea6371edd4c408a2edf1b48d70a10a5cb579513d3cd38a4b5ccf4b7528dd28704a4

Download Submit
/proc/4613/timerslack_ns

Filesize
8B

MD5
d46bf94e9eb1d22281a71504685082ac

SHA1
e4e0629aef7425ba63e897bc471f8625de44edd3

SHA256
2ddb67b8a8c259ffaff61a5abdd38f5b5d6f1c6e2af4344c85b17b77af2451cc

SHA512
68a1a1fd4de784e3a2e0e956d0a63ac4ca540ef90e7fd9a2ddc92cf68e52e29792db64f6615054a6e5460467f0b7abe055c899136d98ce6ebab3d580bc55ec86

Download Submit
/system_ext/framework/androidx.window.sidecar.jar

Filesize
12KB

MD5
bdf3529e80318eb14e53a5bf3720c10d

SHA1
25c9ace4b1af6e80ebb2572345972c56505969ba

SHA256
bbc8300dd1e9cd08de8f66560c1ac2c928615b72b51cef9649f88974f586d64b

SHA512
48b9c2d01171bb651b9b54826baa51f4add48431a3efd8ceb5f7cc3bcd6f8f37edf47fabb24349dd15b3a02329cd450f90a8d164bf4f8dfae554bf3b35a8a55b

Download Submit
anon_inode:[eventfd]

Filesize
8B

MD5
33cdeccccebe80329f1fdbee7f5874cb

SHA1
3da89ee273be13437e7ecf760f3fbd4dc0e8d1fe

SHA256
7c9fa136d4413fa6173637e883b6998d32e1d675f88cddff9dcbcf331820f4b8

SHA512
991294f43425a5b80f8a5907ca7cdbb611401282585a58bb415077005428e3b4c0f661fc07ba5c45f627bd8bdcb172389ce2fda461c029b837abc70f0abbea20

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads