6eca47f1713000790d4bf4eeb3d7565abb78a091fedda2c78061203e660a4041

Analysis

max time kernel
47s
max time network
163s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
21/08/2024, 07:41

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

NewPipe_v0.27.2.apk
Size

11.2MB
MD5

25f81a14b92437773129d07e2460e045
SHA1

da9ae44ea0e405917e26b5108b2ecdf2e0f86807
SHA256

6eca47f1713000790d4bf4eeb3d7565abb78a091fedda2c78061203e660a4041
SHA512

9b58cf11ae1b651ed360f5b181d8682058345503b19ee9447d6222efaa83bda20335aabcc8ec4e59be0f69dd24eed88b438a7cebdfe5abd6e52f42ad1484d1f3
SSDEEP

196608:JH9kbpOx/87VxfaV4pfwPc12mIIXq2D3nytxK3pBDipLHE:xSp57VxfaVjPc12mB6PtQpBGW

Score

7^/10

discovery persistence

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	org.schabi.newpipe

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	org.schabi.newpipe

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	org.schabi.newpipe

org.schabi.newpipe
1⤵
- Queries information about running processes on the device
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4973

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

T1424

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/org.schabi.newpipe/databases/newpipe.db-journal

Filesize
512B

MD5
9eaa25efac38e24bb07ebc9d19d20c15

SHA1
fa0b2a77f64a11b760bf6f8c4aff8635b0f212c2

SHA256
69c35f112e3e0a5ad7f5f890f8584f3af2abe24d832f6c696d3d2c300526c760

SHA512
a46a5caec4bceacca416f48f480aad694767fa9b1c4d3b796c72f106d0777258c15840151369656c1e7c8829324104af7147b2aadc84206f601d4f81a1ddaded

Download Submit
/data/data/org.schabi.newpipe/databases/newpipe.db-wal

Filesize
16KB

MD5
65838cf9c12ad175c57076b33a709e4b

SHA1
b3536b143d635b5f15d92107270dfab22a182ae4

SHA256
711bddbbbd7be606d79b6cd1dc51844d0a7fb8db4e37beffcf4f36fb26cefc12

SHA512
79be262244eeba411030c53983e0f9e0f87eae051ceff6a491e865db7c9f9e50c4fc8fae48e81a14ab1007d7bbc29127a8636cffc7b3540467c51504ed27efaa

Download Submit
/data/data/org.schabi.newpipe/databases/newpipe.db-wal

Filesize
144KB

MD5
c19f66f1a8345bd8dd5dce51b6510ea1

SHA1
11c9f3813e155e841a2482100062ccf80bd6cb61

SHA256
ddfe1bb2b3e30306febafe179fcbc6159a4eca09d2e51be287d5f95204b84aa7

SHA512
747435edfc450f9c4d47b339e2e1ddaa8a27139fa6fe93f531485a138d85aba5f4e827f7a39106ac099dbf4001798b2998422b913aec5e73db05ba1a64848b1a

Download Submit
/data/data/org.schabi.newpipe/files/profileInstalled

Filesize
24B

MD5
096c253215dc2cf4f425599f7c8dfed3

SHA1
16c50a2cb20a9ef51b04b5dbb3475e5422c37f5b

SHA256
5652b2b504c3e7006cc29f8d89367a881d0d472e82e54c9fc5535b8c03cee833

SHA512
cf9a03a6e0c8ec494ce9483fdf5694895a956b9bceff7defd8c34ebc9e947b343ba76d37dfb361ecdbcc62170ae56ce74c5236ab4145506af1a86f4af51e04a4

Download Submit
/data/data/org.schabi.newpipe/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
4fd17435cc34e6a3de886671288748f9

SHA1
0ac3bca18d558a2b35506a9b159c3fbb29d0fc60

SHA256
8b7930500ecfff85deb5034aba7112b3e3fd9b6b8763b7e7d8e9c44fb3f47e3f

SHA512
e5f631874da55ec2d42755aafd535190286f0913b36dbbd8b52df7d8940bca8528ded8f38ba61be4b399a3bf24bc72e8978d5d8e9825b2ef77c7774c5b9559ce

Download Submit
/data/data/org.schabi.newpipe/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/org.schabi.newpipe/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
0cdef83b3a3d24f72ab765cf6fbe2062

SHA1
4f4d68dad5a000320148945e727446b098c708e8

SHA256
df020f12bd9302141173f808e3dd1087050bf42ce27d7b91fd4104bfed93106e

SHA512
f9dec52579338fb0fefdeff6347e56bf427edac41ed418171ff6e215efcee03f831d6a64696e69baf4187c7680b184ce19c2064635c56179aab801d393e1b9b7

Download Submit
/data/data/org.schabi.newpipe/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/org.schabi.newpipe/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
a24bfcb72b6082bfac597b9056a62370

SHA1
0a7b9e83dab0f963e465b01eaa93daad97a805a5

SHA256
507f3ba291a9d56a0b83e6af6b88b4dc926d59d744331ad96c24aab81e534949

SHA512
ae0c8f5234679076ece98d08bb1b956d660dacb4c5129b8982be1d4b0ad5d0b28b808ebd7cd5712dcf6405bcb6e8357db7aac5b85b38eb1d34730e386166588a

Download Submit
/data/data/org.schabi.newpipe/no_backup/androidx.work.workdb-wal

Filesize
112KB

MD5
746d0b499f957fb6ae3709d6a541b367

SHA1
95a58b09ef586eae09a7a0ba0745fb575cf53326

SHA256
aa9cdce72761a89d2888ff2ec318999859409009e2111f1110747d1e7d837ba6

SHA512
0d4e4234e6d302f223f31ec183262f57977f3149c69d0fda6e1779e1e8859e590560e6119d558b5c0fd56161ec0668225af8e9310401c871528ca658d098ed06

Download Submit
/data/data/org.schabi.newpipe/no_backup/androidx.work.workdb-wal

Filesize
120KB

MD5
caddd3c6ac10ddef956ef62a435541e9

SHA1
1443ea7f4329a16313950aa1079406e14b96641b

SHA256
4879e785b08d20f7ec1835b07eea10553cb5116c6f0395233abc5c0fe6415cca

SHA512
24da2be05efb5e0d7ab2daaa008778b31b867b5e7afcfdc04dbb2a85b37a35d9e362c4daccf6b5672f4f87d6ce04adfb2b4d1edabee831bd787c61fd5edec853

Download Submit
/data/misc/profiles/cur/0/org.schabi.newpipe/primary.prof

Filesize
3KB

MD5
fabca60dc5613785081a31a6986e8d67

SHA1
6ee70b07db29d31c8d6a2137c4cab849021f57ee

SHA256
e4e7483dd767bcb2d4765c50d5880769cc85e1dca803e94abf97e11bc93b80a6

SHA512
ca0a26d2d45a49a1e7c57d51e8923e8bb0be3c49b53b041fa31ef327759510465b24a7da95fe8ca0ef66e320309372be5ac8457fa24258b48b0a5c2ceabbd59d

Download Submit
/data/misc/profiles/cur/0/org.schabi.newpipe/primary.prof

Filesize
15KB

MD5
44ae94a4b7ee82574e29f2a3a084e0a8

SHA1
56765310dc072eb4e44d3acddc30fad709293080

SHA256
d2b91c007d737ac8e488a1d935aa0cd3012a093f22b41b1206896f4d7c25e347

SHA512
69a081a1f678bde8e34e1b6bc5cb87251e22e8889f752dd360d8009e862c9cb499439958a1ff250c3d364e3408b81d6bd24d997ed72ea4cb63eb7260a9adfda8

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/0da56ae2ef23dedca0645b0303173fe5.0.tmp

Filesize
6KB

MD5
5850727369ce24fc2921a234ea857c6d

SHA1
5ef4a530a30e127430ecdec1250b367da5f77544

SHA256
94bb6f904fe8b72a1d39298047fd1f2bb3cca93288494398d3dac8fa033629bd

SHA512
507066672796ada037393f3ba125a97fc37562e0f4005d43b008d35360543f87d2a38042e687cc1e36ecc462abcfc2d2504cc44147e2555540652f5e301dd832

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/0da56ae2ef23dedca0645b0303173fe5.1.tmp

Filesize
18KB

MD5
be629b12bf042450a3c4c7998ca16e52

SHA1
1eaabacf0929b5bf332aec3f9fc85012521528eb

SHA256
aee7b29099553c6c629a5f7b7807373f1670cd9d63ce667b1dda9157f98f8de1

SHA512
3a3f74bbb0286a30f2d88904241b2c393b746770aafa893c913ad0500f7ed0be641b62b3ffe43c154f56825caa0fc4de9068c64028014a81f7a99fb7367127f7

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/6b5a591af0c263a394ccc5920e6aa31a.0.tmp

Filesize
6KB

MD5
b17c290addca98b6289fe7dcf5661696

SHA1
2cd8c9c6e268ee5be1c8b2e0ab9b4908c2b9620e

SHA256
ce89fef3da45535407c0d79a6aa1ac5f21becd74ad72ed4bf72fccfba3058e33

SHA512
fad63809659a1358cba5c53977d337fa4f5dc4620513c11e708ac6e02964a7b64f8bb2f9f862c68a766095995e5755f18439e6cc20d660804d136a2aaf7d9edd

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/6b5a591af0c263a394ccc5920e6aa31a.1.tmp

Filesize
21KB

MD5
cf728000c6decc13c948ad3db4048187

SHA1
296514ae28d75a9e76581353edc157c02664f24a

SHA256
b03bdcbd2e31724f33c18af92b7006a1a14930c2ec949694d85e55e664f78ab4

SHA512
c0103d7e571f9558ef40ae81620623dd40b154a2972c6ed5dab3410474687ea54de912e4036665f15214900f7e9a64899506fe40bd1d60616d2674e31930253f

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/c21cf19eb6f3d9aa20347f8211e9f969.0.tmp

Filesize
6KB

MD5
e39fc833e3dc37ae7b50b02a955e42aa

SHA1
a0b5bb7c4ae1ac7010f0bce47cbfe4aaa6caaa04

SHA256
50d53316ec95ac10a951d68a72419bf944e17c17e73e47316ae7ed36f2b602e5

SHA512
bbd4f13e9bb0522e7983eed99fd7643ee804f3c2632a87ca17789e8cbb2615aa0599185178427a24d10627179fadb334c13887f35f85b05f491c21b7ae6faef1

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/c21cf19eb6f3d9aa20347f8211e9f969.1.tmp

Filesize
14KB

MD5
1023f474279a9dc5e6c8cd98b656571e

SHA1
bc960a7869cd8b75d231f55f473c2470d309a5f7

SHA256
6f7faf1219f917ef700d7bd700533ba68be26d3703130654e86dcf0e48e5c1ac

SHA512
e1d89679888648e57fafe9ec5faa38f594bf930b07da8b0359ff64b0ea05caf32dff5d3676f807f291de7ab3e9f8bbabd953fdd715a4fe2de71097950b5baa99

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/e1d178d8e350836bab78cb85a3430be9.0.tmp

Filesize
6KB

MD5
e33c3f5526785e2c2a468c08ebd18b7b

SHA1
6d63429a07edafd7ef14feb2795290b370f5d498

SHA256
12d121645a1d38a0a40eaa9b7339d8624692a073aa2270af82823f6df59e1f65

SHA512
16cb3dbdba72424a4261665f32146f6b98dffc7ad1b580eee87f9a76e586edd299617d2b5815ef3300ad8cd9f18e8ebd8a2cf3d234a02cfa1640775e43394194

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/e1d178d8e350836bab78cb85a3430be9.1.tmp

Filesize
8KB

MD5
0c64365e7e99f1af90dcc36311a2779b

SHA1
e39d0c94281d2594d9a5660419eae6c107cb1072

SHA256
b8cb86d7a3401d129b247ea19b89bfa02df4f2ad96688a833e89e7bba67e039c

SHA512
5e1fe96566d8ad2ea68067d139d1c745b54df774ef6fa90720cdaa259b28d6f20601c4ac57438c2283ddf7c1911ab949072411309123aa1b659bce62d5e7e8b6

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/e5d1b3bbe87497953ec6b0e14b3d7c88.0.tmp

Filesize
6KB

MD5
fdd5e4b8b254ebca0fce178e6ee36f5e

SHA1
1928ae4460af0248a95af0a2595147fb57a545a1

SHA256
34e8a401cfe15a050697ab80015910e4b51dfa1a9c231773a9f06d154a2a6049

SHA512
805a98f9326ef646742c0690cb53e1c1e87e9138038bed8ae455166312764772666f80d0da6c99b98ae08d737078654c53fb90e92fa5256436bebedf6f38103e

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/e5d1b3bbe87497953ec6b0e14b3d7c88.1.tmp

Filesize
10KB

MD5
f5c2f8575e6d365985dc895fdb1bc75f

SHA1
f28165d32a305c4303c63d3653137af3b2ebb3cc

SHA256
ad2b99576ef98570219aebefc0c7e4cbee3399f5467276660c7091733a4ff16a

SHA512
cfa0c84511bb30d2905f592c96756e18e761c861672f580cfaa5e174221629c5ab37635531a21a778c8b477c8049ea4c5837ab143b2fb03cc091f6b39bebdca3

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/journal

Filesize
480B

MD5
536624b7ce31e93bb04b6ad11ce4011c

SHA1
b26f502c5c1808420bd0f663d42fe47f4f836498

SHA256
c455ec6b744efc8cd21ec302dd88e4c179c9e51e172e2b4f851df70e362bf1ca

SHA512
c8545cff3421be8e7d92bca0b4f1d0ad4932cb731a2c10091d6a38682ee5e3ace89b15a4d4d9fef369fe61a0f4d5352b8fd0fe8b29c070ce3b94738c7c5d6a71

Download Submit
/storage/emulated/0/Android/data/org.schabi.newpipe/cache/picasso/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit