6eca47f1713000790d4bf4eeb3d7565abb78a091fedda2c78061203e660a4041

Analysis

max time kernel
160s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
21/08/2024, 07:41

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

NewPipe_v0.27.2.apk
Size

11.2MB
MD5

25f81a14b92437773129d07e2460e045
SHA1

da9ae44ea0e405917e26b5108b2ecdf2e0f86807
SHA256

6eca47f1713000790d4bf4eeb3d7565abb78a091fedda2c78061203e660a4041
SHA512

9b58cf11ae1b651ed360f5b181d8682058345503b19ee9447d6222efaa83bda20335aabcc8ec4e59be0f69dd24eed88b438a7cebdfe5abd6e52f42ad1484d1f3
SSDEEP

196608:JH9kbpOx/87VxfaV4pfwPc12mIIXq2D3nytxK3pBDipLHE:xSp57VxfaVjPc12mB6PtQpBGW

Score

7^/10

discovery persistence

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	org.schabi.newpipe

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	org.schabi.newpipe

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	org.schabi.newpipe

org.schabi.newpipe
1⤵
- Queries information about running processes on the device
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4242

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

T1424

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/org.schabi.newpipe/databases/newpipe.db-journal

Filesize
512B

MD5
9dcc34e01ad4102778b2dd70d564be03

SHA1
2a3ebc72e3be4b2d51dbe3172d8e4a2f20596bec

SHA256
35389e0caf33d5de69cfb4ede37c287cd018c25a9efc385eaea3ce0b0136bae0

SHA512
3968f7825236ab0e763b7ebc6d494fc26dff1cb480037787473c4453341074ccc1047461c5bf320c6bf5a103be14aa591936e454b59ec9a9b54428421f7ea921

Download Submit
/data/data/org.schabi.newpipe/databases/newpipe.db-wal

Filesize
16KB

MD5
ab60b8b3163ac03178ee962181887037

SHA1
2149ddded57d54ab52ffa1e42e61f59b78e18fa5

SHA256
190d09beb0c344ebfc83b7a6ca9e47bb490277e29ca7f76d9ee750658505561e

SHA512
ef112f2be23f3281f2bd1412965efcada82a724614fdd72fbe468f50a74543a7786deb556caa8862fcb08e8455be9f1d311a10bfcd25e8fedcd25aced18dbd2b

Download Submit
/data/data/org.schabi.newpipe/databases/newpipe.db-wal

Filesize
144KB

MD5
5934e03303feeb3778e89cbd4dccfd49

SHA1
040e6f3411f2fdbab16331bb8a3a6f2742203ed8

SHA256
937fd1bd7ea7a41c7b67f806e5e6b9e6da43011705657c9601dde06f71c19811

SHA512
16d15e896692b04e0e5b8eab5fb03bc35c4890192c05d5d0a0962eafd28f67e330a27700c21315e856055dd2d287aa4be7823d41827659c42d20422694deb97d

Download Submit
/data/data/org.schabi.newpipe/files/profileInstalled

Filesize
24B

MD5
b1a404a2e72db935bf42bd2cd6a1cb09

SHA1
9586b9ba430210541f5f43ef76eb95424dadd1e7

SHA256
b3ef9ad39e7387a49d8b4e9e152a0466dd364abd74c0ceba677d506c3c6368c7

SHA512
d37b75e0a2390064c5af50eda7c7cd43e347a5f5fb11909820d2a21b7f17dee6cff029db7c7972ac5c2d93709d548aa2fd65c96c60baa8a2ca13c6c58292fca4

Download Submit
/data/data/org.schabi.newpipe/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
93d552410adf1c5e82dcde017e5e7b59

SHA1
17b7b23178762caa8e97f3882b21c346acadbef9

SHA256
7a73c9809e61235f4503779160d8b4b1f0368060a4e85a088e96f420a130d9d1

SHA512
a5e16955000aa7d36f9cd1916aec7715eff987996eb9e49e6cf6a495e0ca78aa6c1fffe602891c842b1dc423a6cb83809466142d2e110eb73e3c713c0e58b816

Download Submit
/data/data/org.schabi.newpipe/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/org.schabi.newpipe/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
3e781b8d5aac26ae058445188b09bc11

SHA1
de990983c8acf9743f91e60378b9e02772e3b2df

SHA256
9dc9d7c82856400d00103263ba7b6ad5c3784b762807ba80ea4b13140cbea752

SHA512
93610f9f0ed3b89e553ac53c5d01547d8d88fcd43c834722c52a0a419b00d6edb3875b08ac736250bf6f0b7c7e93572771490856a1d899363be0bc3f9957152c

Download Submit
/data/data/org.schabi.newpipe/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/org.schabi.newpipe/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
4e4f9391593d6c38058f7799a1ea5002

SHA1
710fffffb081fbe21ce913b80af73125feda318b

SHA256
fff4d7108bc237c76e7e80005e20b3afd691e3f030324e23a117f5eb8affeda0

SHA512
60a81d666621ed2615156f480c2017fe4678918a3fe143e86109100e7c9856f15de80c604cfc188b43394b8368a59dd75bba82f0f2321cc80791fb86626d6e63

Download Submit
/data/data/org.schabi.newpipe/no_backup/androidx.work.workdb-wal

Filesize
112KB

MD5
0bd17a5ec67c4f8660c370c53ef61c9a

SHA1
6e2482d9c1e31b8a076f136db17af07f28451282

SHA256
55eb3a6522ec34996f6c6a08072d3fb79ece612a45fb34717298ca3829aa13c6

SHA512
7a8c6fdeeecf3d34699999ae90e23261c3df6fb3e72d5b610adbf9572c1c1ad800748818dab78ef900699e0b2556ee51f32f00831e005648fce76ca68c08ce40

Download Submit
/data/data/org.schabi.newpipe/no_backup/androidx.work.workdb-wal

Filesize
120KB

MD5
3151b431c75b44fd696458ede9c8b2b0

SHA1
3511e9ec6d4368cd72422a7895c5672177addaea

SHA256
c519712787d63b5509640f39b7d87827fdc7c2f2171f1f70574c8675c1e25aa0

SHA512
76b2fec762a4dec921b4cc8702fe62cc18b5bb8883d890f354192eb9cb3fb0f507a21f8f0d53629ea9b4dbdcf7be255dd2d2ae9345c12ea3ad4b3a9a8c119b65

Download Submit
/data/misc/profiles/cur/0/org.schabi.newpipe/primary.prof

Filesize
3KB

MD5
fabca60dc5613785081a31a6986e8d67

SHA1
6ee70b07db29d31c8d6a2137c4cab849021f57ee

SHA256
e4e7483dd767bcb2d4765c50d5880769cc85e1dca803e94abf97e11bc93b80a6

SHA512
ca0a26d2d45a49a1e7c57d51e8923e8bb0be3c49b53b041fa31ef327759510465b24a7da95fe8ca0ef66e320309372be5ac8457fa24258b48b0a5c2ceabbd59d

Download Submit
/data/misc/profiles/cur/0/org.schabi.newpipe/primary.prof

Filesize
16KB

MD5
945aeedbc409a88ad2b0ac4c17c6e22f

SHA1
e12f57ca84cdf4c868d772466cfe2caf0fd59e38

SHA256
b9fac73f5301a69080633e1dad0fb701f073641a691328164af55acb037c8268

SHA512
9fb22e5c24846cc44c52afc77947146314f695d00d204b2961185fb5ab463e21c20499ba3adeba47f40a2e2f7b581fcc3545059c6abf75b061737b0e24c19312

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/0da56ae2ef23dedca0645b0303173fe5.0.tmp

Filesize
7KB

MD5
a29ef6f022fd33d9a7ced9e5791ee1f3

SHA1
9198df8db386761bd5e56417a6ce778946adc526

SHA256
773e68a32bb4cf6002aa320da695790f40005968eb8f8e0c9fe1d12c7523063c

SHA512
e36d69eacbc0504c29b8e8da296090fa07301345a00170b5c3f6776f7708b084639efe7f69478e0cf0beb2bd2ae9fc7fb9671d121806f2913879cf0bd9df55c8

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/0da56ae2ef23dedca0645b0303173fe5.1.tmp

Filesize
18KB

MD5
be629b12bf042450a3c4c7998ca16e52

SHA1
1eaabacf0929b5bf332aec3f9fc85012521528eb

SHA256
aee7b29099553c6c629a5f7b7807373f1670cd9d63ce667b1dda9157f98f8de1

SHA512
3a3f74bbb0286a30f2d88904241b2c393b746770aafa893c913ad0500f7ed0be641b62b3ffe43c154f56825caa0fc4de9068c64028014a81f7a99fb7367127f7

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/6b5a591af0c263a394ccc5920e6aa31a.0.tmp

Filesize
7KB

MD5
ba11d3978176d2a3a931663a4a547cba

SHA1
350843f41b1dcd8f789f563b2ef1e438afbd46f6

SHA256
b18d42b4f07991ca04c7555661896c14b09065a4508ee61df9abf30db2fe7e55

SHA512
3abdb9e8a109c45b761a6d3417d89a138a3453cad43d8f2eafcd67be67c2ff685920343061265923066fbdc5f7fcf7aeee4861ef416c59a8f6d3c3dbc302afa4

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/6b5a591af0c263a394ccc5920e6aa31a.1.tmp

Filesize
21KB

MD5
cf728000c6decc13c948ad3db4048187

SHA1
296514ae28d75a9e76581353edc157c02664f24a

SHA256
b03bdcbd2e31724f33c18af92b7006a1a14930c2ec949694d85e55e664f78ab4

SHA512
c0103d7e571f9558ef40ae81620623dd40b154a2972c6ed5dab3410474687ea54de912e4036665f15214900f7e9a64899506fe40bd1d60616d2674e31930253f

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/c21cf19eb6f3d9aa20347f8211e9f969.0.tmp

Filesize
7KB

MD5
f182739a96904f4989df3a92dbcc36e8

SHA1
4e33b4aa7de623a4152f7353c370fe49b15c5a8c

SHA256
0d80d5eb09d66375eca5aea8a09bfbd7f17408bfb6abff0e948f674e0d449d89

SHA512
e8670971e66ebbce6b137ea698d76fda103a8f446e9fbe8d0ab024085300c38b3a6fdce38a2ff25e5460b731838bea7fbb29fcb4f092b93e5aa05402f4d5a43b

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/c21cf19eb6f3d9aa20347f8211e9f969.1.tmp

Filesize
14KB

MD5
1023f474279a9dc5e6c8cd98b656571e

SHA1
bc960a7869cd8b75d231f55f473c2470d309a5f7

SHA256
6f7faf1219f917ef700d7bd700533ba68be26d3703130654e86dcf0e48e5c1ac

SHA512
e1d89679888648e57fafe9ec5faa38f594bf930b07da8b0359ff64b0ea05caf32dff5d3676f807f291de7ab3e9f8bbabd953fdd715a4fe2de71097950b5baa99

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/e1d178d8e350836bab78cb85a3430be9.0.tmp

Filesize
7KB

MD5
19537e5d079bb6d2c8d4e3beddbfdaba

SHA1
2188b20c104eed59acf0950d6ac911ce77c3b6a4

SHA256
1d7eb9fa26aacd1e617405e30956fe8eea39cceaef7bf50700cb46412da57fef

SHA512
e839c1755112873e09eb9f9947e7aec955efb6cb4fe436b0672fa9e96da6a24e92e2721cc743a4c0f10b2022633be66d2ad44cbc266d2248826c8f2fb46e4bfa

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/e1d178d8e350836bab78cb85a3430be9.1.tmp

Filesize
8KB

MD5
0c64365e7e99f1af90dcc36311a2779b

SHA1
e39d0c94281d2594d9a5660419eae6c107cb1072

SHA256
b8cb86d7a3401d129b247ea19b89bfa02df4f2ad96688a833e89e7bba67e039c

SHA512
5e1fe96566d8ad2ea68067d139d1c745b54df774ef6fa90720cdaa259b28d6f20601c4ac57438c2283ddf7c1911ab949072411309123aa1b659bce62d5e7e8b6

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/e5d1b3bbe87497953ec6b0e14b3d7c88.0.tmp

Filesize
7KB

MD5
04117f4339563d747a23590a24ee0362

SHA1
874eda432e768aaf188ed3f3d11c347cfa6e08ba

SHA256
d3612f7e5673e371383e2ab2852eb38c3f85cce9e28569295cd31c0f9243ea6f

SHA512
98f28b75ab0ab15cfbd76eaf84841caf828d961aea4ee397bd14a82bb5ee877dfdccc7f4f8d0a66dc4f7bb4d9df3566e7673aae7f661cbeb5f051dc167dfc96e

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/e5d1b3bbe87497953ec6b0e14b3d7c88.1.tmp

Filesize
10KB

MD5
f5c2f8575e6d365985dc895fdb1bc75f

SHA1
f28165d32a305c4303c63d3653137af3b2ebb3cc

SHA256
ad2b99576ef98570219aebefc0c7e4cbee3399f5467276660c7091733a4ff16a

SHA512
cfa0c84511bb30d2905f592c96756e18e761c861672f580cfaa5e174221629c5ab37635531a21a778c8b477c8049ea4c5837ab143b2fb03cc091f6b39bebdca3

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/journal

Filesize
480B

MD5
4fe86c073fb395d02829bf18f14349d5

SHA1
744c472d573a45aaf9cf2b17de5d3d0c34433a31

SHA256
6f83f58be32f5e6b5c814f99048414a41f792fca84b4c154002c480f4a72601f

SHA512
05c55878398499d4562e31990b43712d820e43e441c927691927d91c016e3a7db4c480b6119d69f45e2382d9ae42527647c45fe5d6fb08e270632017ba0530d1

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit