Resubmissions

27-08-2024 09:34

240827-lj6kmawbml 10

09-06-2023 09:41

230609-lnrl9sbg83 10

Analysis

  • max time kernel
    17s
  • max time network
    361s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    27-08-2024 09:34

General

  • Target

    eblagh.apk

  • Size

    2.1MB

  • MD5

    6cfeee3ec52dc569ca7f5ccaba4110c9

  • SHA1

    96f2cbfaf41c79665fde6daa02ffb3d08a067643

  • SHA256

    4ca30f92aadf9409173eef9491281e7e389a9d9f913edf018d554339b7c12594

  • SHA512

    4592027af2e5dfc6be1810cf8ddaf02c6625b21b5d413e140fe3f32cf869299f8cef04c83e6e68a05d096a91fd6ebe9c90402b86e9786ef5215fd9be8abb1fd6

  • SSDEEP

    49152:r/0MokTjvWLBos1T7/1W4yYRHd8vt/OVxfMgSSp+t:z0xGTW1vRyYR98cfOSgt

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • com.rez.ir
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4259

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.rez.ir/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    90d302775621afb7396407705e8d06ad

    SHA1

    359017169a3ae1c7b0556464a5942e3f9c59bf20

    SHA256

    13be57668e46265bece8c50fe614f00df7f4af4d73bb54513d736ec30218585b

    SHA512

    4e692b114a8f01320e3b68ccc494968baa749f6314a11b3c1aab69ca3fa0f2280aa2e848972b6ed62e7509ba27db6d6b082565ce51de4aed7de8de623fedf0b5

  • /data/data/com.rez.ir/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    9d15ad8fc889ea00f352c6bc49c89332

    SHA1

    3845cb6b621cc1ca08ec3f3b5857123d91941aef

    SHA256

    e67425dddff0eba4a24e0d77f8a51a1d8b49e5741b8c7eed44dfaee91b564270

    SHA512

    1cc16b1afb194bbe255cf410c533f0b8b01e97acc0f71b962e3d200c7f818f190e57c6118b6070bbb13840761268f1405b5905fcb5db293c17669a65760fd5ce

  • /data/data/com.rez.ir/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    00eb33a3f1358353c65ac9fd574c62d0

    SHA1

    d75dbabbb4c42051d162a126b178747044c8d232

    SHA256

    31676296c704fe41bb57a822f22d7e8cff35acef7711fe10ae7bf550f73960e8

    SHA512

    e404cdf4bd612bccc146cdc2de348514ebbbcf18f1504f3e064d59d04d84c215a620de4e04e5963ba35ab8d09cc3057ff12eafc461715ae39cf91ca662bb8d6b

  • /data/data/com.rez.ir/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/com.rez.ir/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    9d6bca634a91b184430e8ca5438c785f

    SHA1

    d1df7122fd4d30ffd684614f93b5f06b1a24b992

    SHA256

    5b2ad3a0b5b211c7bb8611147047daf11e773e0891496bb3eaf9e3209a68e86d

    SHA512

    8e1f1bd59c84efa89307a00fc787ff8d72b20ded0dab1b4fe667dfe2813fab96bde4dc416e9c72b083bf4f0ec599bc998c2fd5f1b400fd2a10701ec7202ad8bc

  • /data/data/com.rez.ir/databases/google_app_measurement_local.db-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/com.rez.ir/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    46887966013caa683981319c12e1c69e

    SHA1

    e6a31c930ae666e451cfff6f35da20bd281d7ae7

    SHA256

    5caff3540ada9a3724eed91afd16879e66d68ed8e4ee7f6c4ea8ade8324b111b

    SHA512

    a0e2a624b0cf83dc7650a2926a120ea84022f1c9b676b9aca5259c5df804c96285805b644d7fbb5cbe2e01790aacba81943f2280e4c889fe8542f73e8d599dfd

  • /data/data/com.rez.ir/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    62597823ab73261d31af25390e446533

    SHA1

    673226cc2a9b58c856e83e22188f8a025c333b75

    SHA256

    09435fe5819348bc596baf6e027cfec959d8c4650c16f06f958a16372f4b381b

    SHA512

    797e82c92b8c5b149ea7bcc1ff8090f5d5840ee506a20bb5dba487015e179e03165442191b016b5ec93d62177a11a31aca3fef8313a44956b7775f04896acfc5

  • /data/data/com.rez.ir/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    5c197197d74006e1c54dc17e03d926bf

    SHA1

    b4e776bdb228527734a1a1bf02c0dc407da9ae5c

    SHA256

    a60a263e8fe981bd7eea9df73810ec88e5805ebb54f750760020e9734d1efbe2

    SHA512

    c7a58c783715273cccc4931b39feac8d1449d41f6a1f66ef9632a9dbecf196cfb825783c0d467af237aec2423a7c16c05ad9f82e0f10eb0fa9152ce929868ddf

  • /data/data/com.rez.ir/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    b18b36a1e6fba809eeb4b18a5fa022d2

    SHA1

    876474a60a0616bba37b14b012e09ffeba513b90

    SHA256

    4e6e123e7932540bead97cf39b71d00018ad75852221d53a5a0523e421a5376e

    SHA512

    68bb70602fab45e8f0fd020fc870734b98ec519d55039aaf014444bdbec3fa8742d60a0c0c6ef4712c79a2f364eab650e7291c14db804fa3c582543b66f21ee1

  • /data/data/com.rez.ir/files/PersistedInstallation3511684066816508403tmp

    Filesize

    570B

    MD5

    518644ca9df83bab47b4d0a642ff4d19

    SHA1

    6204ad57b4fdb405658e263ef4c455968c85619c

    SHA256

    5550403cd4a7148ee7d900bc859ced726ebd64eac87b7f5b722cc6cb6e903de9

    SHA512

    ef37d04cd2163bf42cde760a63d456c704f5aba0a3dfa72a883188f23d1baac3721b2f41526c15e6355783051b894c601c6c7633536348f8c1626a085f91b105

  • /data/data/com.rez.ir/files/PersistedInstallation9220512485234381854tmp

    Filesize

    90B

    MD5

    a08729b12820d49bc0b7daaba739dcdf

    SHA1

    6e2fc68e620ca6e64d17a05b18d91f2aa17affac

    SHA256

    a3d23283c7e2376c90377889dbc7e6c8f23136612c099c3ed0860225025e97c1

    SHA512

    ca379bd27dda2703e7792b0cce89b987f496e1d9015e248c43da447427689c7cd94af4343787a097fbb93a5eec17bb8021d56e1e4f92b77154099c255429f96a