2424960addb09af62ec7d2f25873ee38801babd96d70e03a350fbbfe1d742551

Analysis

max time kernel
19s
max time network
132s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
17/08/2024, 00:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

app-armeabi-v7a-release (1).apk
Size

12.9MB
MD5

9e82f28c68860d89027a4d89e64f5c5a
SHA1

f7c93919b888aa956d670426a48867ad5c4beda6
SHA256

2424960addb09af62ec7d2f25873ee38801babd96d70e03a350fbbfe1d742551
SHA512

547276c4c7b1f0b72494e2b0710b5effff18d3dcdbb8126a03df8bcde8fe1f8e8eba1852746d92beb84f0cf036d1572d70f43b6d217357205d067ba84e8e13f3
SSDEEP

393216:hPLoUk6XY51DIu9IiT9r8OZv4JerIOzTSDCkCI7Q:hrk6o5NIu9d99qeHzmDpCsQ

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.jhelum.gyawun

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.jhelum.gyawun

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.jhelum.gyawun

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.jhelum.gyawun

com.jhelum.gyawun
1⤵
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
PID:4263

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.jhelum.gyawun/app_flutter/settings.hive

Filesize
75B

MD5
3f788cf2860b179fe0b8701216c56877

SHA1
862756e5b3866897043baabfa566a32c81271f97

SHA256
c22254ea9a22748b4c32da745f9b0aa37e6761bbae7ccaa5eb775cb9421a9b34

SHA512
0e38c29f7ff8c91b2a88971ad7c28c10bff1c368ed29b4ede2827c6244173f73a5bc1f24c471e8a91afc3331a3bf6c562e8f2737a21f7a3cff0a4c829143dee7

Download Submit
/data/data/com.jhelum.gyawun/cache/libCachedImageData/01b54d60-bb10-10ed-a4f6-231b9310598d.jpg

Filesize
3KB

MD5
8f3b11ea292733ff9c3d9fa1b90d8d69

SHA1
598814c6e4d340a652ace7b741d41d4a0b25d2c6

SHA256
c8796978fc7135ae49f36b351768c943f6bcd49d9703752c18b7231ca17959dc

SHA512
060776d363a503b30be211201313a9f0db7d3ef895e096c0182f4e9092821257fe8fb592e98cb298cea18dce51035b38c786f5638a31f3a81aaa6c8892f08287

Download Submit
/data/data/com.jhelum.gyawun/cache/libCachedImageData/13c47390-bb11-10ed-a4f6-231b9310598d.jpg

Filesize
7KB

MD5
45968dcff3fa79107f3977b98a31c7cb

SHA1
0c88facafc09c2c60403682d6984e0b9f036391a

SHA256
32bb2eaa9cbde1851a26fa3a22f3ddebea731145d485146c8443d11cdae8d3ed

SHA512
dbc82bba383bc2e93fd4d0b8b76c051de27507e5d69242ec5de8423bcf73cd1807dd7d936787d41e44f66a8599177e0faf46498320af04db0b3ff5bef5c4c027

Download Submit
/data/data/com.jhelum.gyawun/cache/libCachedImageData/3d56f530-bb10-10ed-a4f6-231b9310598d.jpg

Filesize
4KB

MD5
03013f1597e8ed0c598088c77b73d45a

SHA1
823ad8ea9f3cfc612bb68d8e6498ea48de6e650f

SHA256
309ecc47270dd348fd21c0fd8c8dff7bdd00e1b429eebdbd2b86326906e834cb

SHA512
fc5403b4cb2ba77678901d2257abcb573fb13100a3a92176cd4448c622d5744feb9f7c6e4a081da29c74827766f53b53103806227e245230e918f733d9797e7c

Download Submit
/data/data/com.jhelum.gyawun/cache/libCachedImageData/44523840-bb10-10ed-a4f6-231b9310598d.jpg

Filesize
3KB

MD5
58b923b01d1910aeed2f374e0ce4cf90

SHA1
00666bf7447dfad422566e34dff4c2bdb5703361

SHA256
69e7046b7adad27db63fc64384eac11d58d432944eb12f13ca1b83a1f9d409c3

SHA512
4f6bbf5ba6e555658cbfcc5eb1364e6796be635f9a66fd0e5575aea7d9a784cd6f317390ddaa068c3cab6b1d2e79107df7bb75932b682feae26d1a87259f3ce7

Download Submit
/data/data/com.jhelum.gyawun/cache/libCachedImageData/57da1130-bb10-10ed-a4f6-231b9310598d.jpg

Filesize
11KB

MD5
6f6cc9c14434b237617777cf2efb673d

SHA1
b5b17bf2e536c494f4396f2baad6f37fd16d5277

SHA256
d6c80a0255e762f053962c3228c8dbfd9795a729bd8d7985e441aaab344cb47a

SHA512
f4e1f41d0c94536fee57dcc6b2f91cd80a78deb21e4ccfd78465de84cd9cb9ffe2680d2d823b6155ffbf52cb48f2b0414b33caeebb3598ddf6f713270354b428

Download Submit
/data/data/com.jhelum.gyawun/cache/libCachedImageData/99137470-bb10-10ed-a4f6-231b9310598d.jpg

Filesize
13KB

MD5
b6c331716b9f87bc67bb55bc09a4a5bf

SHA1
b080ea3a3a614474e6efd412912e46e685a5ae5e

SHA256
1a16d15a7d26eef2910e3951c13661657512604dadbac0f92124c721029b2f3e

SHA512
653206312c953b21b4261a7dee91e10aa81058888330d9d2c883c0a780d89cc99bd7539b9a3cf78b6d50907132c389b8d07971be526bbf0348e6a6f792e2a002

Download Submit
/data/data/com.jhelum.gyawun/cache/libCachedImageData/bd8d6040-bb10-10ed-a4f6-231b9310598d.jpg

Filesize
6KB

MD5
a57926fb7b8ede9589dfa59bccd53f76

SHA1
05ee2a4af4942a1f0e356f7a626fa5e876b260db

SHA256
118d71de7a35db7207f076761ee08a45bb45bdbdc298180cd6129f0b5c5a947d

SHA512
68ef595fe35b0a6b8e6017ba877fd1a7ef94f0f2b7db068652530e7d7e75744c69f96b526d1612bcd7e70864db1cb0c6de6d64ef0dfb0a147354da6a627dc282

Download Submit
/data/data/com.jhelum.gyawun/cache/libCachedImageData/f9b8c6f0-bb0f-10ed-a4f6-231b9310598d.jpg

Filesize
3KB

MD5
b8d5614f0c766d8cf46be36f92932943

SHA1
075019378a63a9fc297f494cfaceacc548b5d06a

SHA256
510ac95d72be61e241621a26d053d894eb3170998cb2997975bc5c1885ba923a

SHA512
7a26cff504cefcf9c09fab43d828529480618c463bf6fce9ccf0ca22ea9d421e2ecff859e9cc75145d742e377823217b85ac178bbe8be4d7399aa808b298e301

Download Submit
/data/data/com.jhelum.gyawun/code_cache/flutter_engine/edd8546116457bdf1c5bdfb13ecb9463d2bb5ed4/skia/c0e0b76d6d519c4d4d1be59e4723d415dd01f24e/128b43e1bf15899d8cfeeb2dc5395afcd374f9f8.temp

Filesize
1KB

MD5
0a1000f03055fc8f6ac0d66cc6c340b4

SHA1
eddf6f91bc40edfc660630fd438c590148e597e9

SHA256
0468b16de5ac7d2cbc9af73846a9c66a385a7f7c46bf978ca71621dbf2cb42dd

SHA512
c8e4c0ba6fd5e285516c52347544d220fe11926542a023c339c0ce51b9e3a671e211be665f90b374cbe78a6971663b7c27bbf850c784c15e76711b4254a84b23

Download Submit
/data/data/com.jhelum.gyawun/code_cache/flutter_engine/edd8546116457bdf1c5bdfb13ecb9463d2bb5ed4/skia/c0e0b76d6d519c4d4d1be59e4723d415dd01f24e/16db3dbc6e0931d5b29149581808cb6401ad41a9.temp

Filesize
1KB

MD5
c7508f3107811f8d9c5b693ca87c29a0

SHA1
ca242bc7a58e1de2f2541c4da86d2e549700684f

SHA256
624d8103ff836de3f9c13d669a056a002d1e05d7fbb986b4ce66532d3c09bc4b

SHA512
648777295462d80097581ca57402efeac6f87016c3612be1548d407be8992b03118dd5a4fdc4597e64c908c1e4690f01de2a342f2606259351569032ce7b3483

Download Submit
/data/data/com.jhelum.gyawun/code_cache/flutter_engine/edd8546116457bdf1c5bdfb13ecb9463d2bb5ed4/skia/c0e0b76d6d519c4d4d1be59e4723d415dd01f24e/676ee892fd18de7e134fd3acbbc8071b71631d61.temp

Filesize
1KB

MD5
475e0dcfd72f7418ad020aef04ee5974

SHA1
f477efeccc012b74e65ab6a85bb37c474dee12aa

SHA256
c3d45aca96fa941e39ef1a7dd810c1ae3f202b272d2fafae5ed3e5ea93ff3a8f

SHA512
1bb1ff9241b4a191d416d380b868c6921d64f8498e236e0862addf28e1e8cb6a68f45b3f6f11d5192507ab34d2df7a582d403fb72f0fea16ececab3ba5381443

Download Submit
/data/data/com.jhelum.gyawun/code_cache/flutter_engine/edd8546116457bdf1c5bdfb13ecb9463d2bb5ed4/skia/c0e0b76d6d519c4d4d1be59e4723d415dd01f24e/705add3ecd0197f2b88943a82db10f640105cfb2.temp

Filesize
940B

MD5
04598b97e3b7e87604904e80967a97d9

SHA1
55d491c1338831e5f444f752fa2e1d4be4fc325f

SHA256
e09703745ccdb2d7c36ac9c8dcecbbb9bb9f99b4c521a843b4d8b3ea35e76013

SHA512
69563be346034ab72ad0ee172ec136c50ad45853d17f2060c9774eb78ba3ebd82316bfda15592103971477b78cc1ccbabc9301f9c033464d1c2d336c059b8904

Download Submit
/data/data/com.jhelum.gyawun/code_cache/flutter_engine/edd8546116457bdf1c5bdfb13ecb9463d2bb5ed4/skia/c0e0b76d6d519c4d4d1be59e4723d415dd01f24e/7b39a766bda0d5dc51d4f5bec77beb90a6675b8b.temp

Filesize
776B

MD5
10d8bc5780a03823438b28792890d30a

SHA1
13ba0a3ec26030f54798e7fee49383b16c4c1d8e

SHA256
3a9d5e4d865ff2f35fdeac9b8658903a7a2e7c03ad971266c2a69fb69b27f5c5

SHA512
c8081580eb7956993e45c42f6a4f4920a7b51901ab3d5fd746436b0db3c2c0d5e7c6587d96b78ce5fc2d1267db0ff9e6e4238efa9df4ceb57752e111c4539067

Download Submit
/data/data/com.jhelum.gyawun/code_cache/flutter_engine/edd8546116457bdf1c5bdfb13ecb9463d2bb5ed4/skia/c0e0b76d6d519c4d4d1be59e4723d415dd01f24e/7b8a47ecce333a32f0423e66644ae1bc7eec446a.temp

Filesize
1KB

MD5
5225144df1c3115f3defc56b08299eee

SHA1
67d76daaade8d72f26da60e3e43bfbcca62e3623

SHA256
f2a8502c679daa0933a7a46ed7e0b6f1e8b2475d9126bceca6eb56d0472de178

SHA512
29f020819788552930c4b684061ff2d54340e35a584931cf8e1d83b077215fbd84aec1066cd5b415d716e368ce20c44aaccf9793c02df52c7d93396d1c362f05

Download Submit
/data/data/com.jhelum.gyawun/code_cache/flutter_engine/edd8546116457bdf1c5bdfb13ecb9463d2bb5ed4/skia/c0e0b76d6d519c4d4d1be59e4723d415dd01f24e/87144fe56e578d5f4af2b3007a0319c145f30d7e.temp

Filesize
1KB

MD5
fbce9a9ede6ab098733dc8dfe0371f96

SHA1
5b6882ca9d03d9e60cfb800aa468fe0ef3639e3a

SHA256
e3ad52e426bc4c4e5b10fb858f4e2a67ca48f23f6d53e0251250c9b385a6f09f

SHA512
ce65a3fe0a65505828bec2167e660385b4a04ae0edf28eed6e6942fcc38ad6f02db7cc8942ce40ea99ed3f9db52e23b8cdad4bcdeb8d40ddee3f0c4394f561e2

Download Submit
/data/data/com.jhelum.gyawun/code_cache/flutter_engine/edd8546116457bdf1c5bdfb13ecb9463d2bb5ed4/skia/c0e0b76d6d519c4d4d1be59e4723d415dd01f24e/8cdf1c1f883110c64bccf7736d890bf43204866c.temp

Filesize
1KB

MD5
b155dbc2b7f2678595ed5b8b4068c238

SHA1
a28e9910dedeb6d6cd1905b4f9874e37439aaaf4

SHA256
8ea68d0b6692c568007ed527f2b7ebec24949cf61d912ffc2a30b97ca9bc986c

SHA512
972bcbf55791630ff51126ca432b6f37297c89e89a772f0afa200413363dd8b2cc91a0e33abf2391f85e00e417b42ac08141ecbb141dbf2e06ef0ed117c1b31d

Download Submit
/data/data/com.jhelum.gyawun/code_cache/flutter_engine/edd8546116457bdf1c5bdfb13ecb9463d2bb5ed4/skia/c0e0b76d6d519c4d4d1be59e4723d415dd01f24e/cd0aebc6a5ab1f494cd5a032873289a051acbce1.temp

Filesize
1KB

MD5
99dafc8f9e3e85406d12c76bb3e9f8ab

SHA1
c931080820f60edb858c5ed9f590d17aac6f4ca3

SHA256
7ac3b90f469082ecab108b19e1b7be11b0c042c0aed712ddde5be51bd52d1182

SHA512
f83279164c1a83ec86af669628548d7b52e8f7c6e7282415f055440774c6106afa252e5be4839166c81b957f2d96b3f90bc10742422ed758813a29566f2864f9

Download Submit
/data/data/com.jhelum.gyawun/files/Poppins_regular_705290b12f58c6d70aafcaaf461dbc3d2f7f19d0f4362af1843b107d95d4960a.ttf

Filesize
150KB

MD5
9ba5c294b162c2688a1541ea64f36fb3

SHA1
257c4afc8725d026f06e0208e2ae7bfe079f1452

SHA256
705290b12f58c6d70aafcaaf461dbc3d2f7f19d0f4362af1843b107d95d4960a

SHA512
6c146f6a4248f2aa595cb51558c25289a89124308a5bbf85f60048d07e056636e46ccc7a507e16f4fd558814e89df0b04b139989ac3310a0665cc23bbdb5c0af

Download Submit
/data/data/com.jhelum.gyawun/files/libCachedImageData.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.jhelum.gyawun/files/libCachedImageData.db-journal

Filesize
512B

MD5
590a3f628a11b3bfa5d54d41041ed363

SHA1
a8dfeebd12789eaa151f5146bda103d3175a9345

SHA256
62cd95724309791730f159ce5d278df1a024b17fd8d4a616591b2a3a7894fb58

SHA512
5b9782f5a4acb6927342fe049d9139e6289bceaa182d337ff40f63e12137b86a8cc73acb5ef3483f6c1f73415509b6a0e22ced94e1a00e7e9d4d108f9a5313dd

Download Submit
/data/data/com.jhelum.gyawun/files/libCachedImageData.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.jhelum.gyawun/files/libCachedImageData.db-wal

Filesize
60KB

MD5
cf7503d005ec6336a1e3cf1d54992797

SHA1
38de26ba7167ef260552108bd359cf28682431e6

SHA256
cd65964534eea3d0892c228d26f965ce3f132fb5c0500d4e3b5a087c6e7b6032

SHA512
4094f607daf9f94d2c04701f35c026cdef041a31c1f38ba90fea3c72645c3d6c240d2c24c09dbfce194dfe13782553a4bc58943854332b753a036ca6d2b86074

Download Submit