Analysis
-
max time kernel
5s -
max time network
132s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
27-08-2024 09:34
Behavioral task
behavioral1
Sample
eblagh.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
eblagh.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
eblagh.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
eblagh.apk
-
Size
2.1MB
-
MD5
6cfeee3ec52dc569ca7f5ccaba4110c9
-
SHA1
96f2cbfaf41c79665fde6daa02ffb3d08a067643
-
SHA256
4ca30f92aadf9409173eef9491281e7e389a9d9f913edf018d554339b7c12594
-
SHA512
4592027af2e5dfc6be1810cf8ddaf02c6625b21b5d413e140fe3f32cf869299f8cef04c83e6e68a05d096a91fd6ebe9c90402b86e9786ef5215fd9be8abb1fd6
-
SSDEEP
49152:r/0MokTjvWLBos1T7/1W4yYRHd8vt/OVxfMgSSp+t:z0xGTW1vRyYR98cfOSgt
Malware Config
Signatures
-
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock com.rez.ir -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.rez.ir -
Reads information about phone network operator. 1 TTPs
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4B
MD5098f6bcd4621d373cade4e832627b4f6
SHA1a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA2569f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff
-
Filesize
16KB
MD58cad99b389669ce7514ed161aa6f7b94
SHA181753cf4dd6723b9f8ea5dec052268f02dcef3d8
SHA25610ba2111cce28afbaef01147920b5f5833eaf6bce54a33f85c42bde308565929
SHA512b34fbd54b751443cc7270e674f0ffce55f39954385fd3eafbce637b0f4edf5af8d28723073c85519dbf5656fcd85b8052814500738776112abf8af7a5bd8be2b
-
Filesize
16KB
MD54d103fa2800a7498602c8ebb280c05eb
SHA1ca121a66d8ba35e5ee2b84bf5f6e04622d069e94
SHA25604d3650397116bf47383fc292edd4ca8e2b94a9e44d64c674214338d6723d127
SHA5129068710f868e1c414baabbc0a41e386edb8beb3602d80b02003c0c3185b191ce397714658b96517295e86ba6b487f31924378d98e1045b427c6a132bee74c6ec
-
Filesize
16KB
MD5e5c1a01737f7e0db356a65ab76be4bd6
SHA131be52efde249cdd87a1729b28df600370b131fa
SHA256fff899d5fedaf34bfed9e113abd11b1e855c24d7a187d1767f255d4030c24b51
SHA51258612dcabd0f15f95c711655948fd9404cf82702675232d4995aeeb961e04728fab77f368160b590e2a32df1a087d2caeab4ab399a593f02425258cd458a11d4
-
Filesize
16KB
MD51a802f51615ca83775df8e1fee0e650d
SHA12680cdf94d9b8b30b83c3f823dbf398ff95fb922
SHA256b646cf6584008aaa8b1670c26ad378d1c856db8e1facf3e46f024fea2d1e9795
SHA5128033c7c3fd6dfd53aa327b2a39317a646f1fa652ed0beae19626190f1a6e8e5beb1af9b689592eb1a9a98d97d2cb9f58da2c04e187fced6e99f99db93ae31b66
-
Filesize
16KB
MD5de82e2c94d2718988804b035a46d17b1
SHA1705f5ff19093ad209f2a666085d6ccaed3bf58a4
SHA25629110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39
SHA51268f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e
-
Filesize
16KB
MD5d9cf75fdd1c2292d986f6c3d5d60f2c8
SHA107ecb1d3a26d952ae5fecf54f36699ab498510b1
SHA2562d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a
SHA512442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb
-
Filesize
8KB
MD5f536d4609341237f0108b0de9fac6af4
SHA123fc9f14d3e572295c90139265497b2a166b8c9c
SHA2561bf8d4b7e03a9b650f6a4482192c59420f362bdb21fb3aa303bc22c1ee3b19aa
SHA512908314dcbfa87190217a14242df3437db92dccc03ac5d3f12713854664460f9ca065ea1fafff77c8a685f6e2b8927a993dd8526a9ee37c31852fd869fa9785e6
-
Filesize
8KB
MD533949c5aa99225976318d788a079f99f
SHA13ba0e34ad651bfdfa2b9697cea8334456f577efb
SHA25666f5acbb35acdbfae2b391f34150d7f30fac7a4e747334e8d2d8fd1aab401d15
SHA512a7922a94f5beeedcf28709b18097b37710167729cf64c29195bc54d6c6295f5f898ac1e8bf0250812ddbe180a3e5f58dd87bd63025a78dc46700a7ee2bae21f0
-
Filesize
512B
MD57fed677823263be92008181e5b0cb66d
SHA110f996a1799d20534fbbe8fc546527c51cf94001
SHA256247dfaee6201affc2584f6eeb956dda775ccaebf86ded2693d77c29d206c92c9
SHA512cd069282d37b814386b6627f37ebe6ff1085be3b2bb595888c1d74237187378a4e77f59f5a2422ae15c5ae94a9db4c906bbf28bb502d10cc7ff168da0bec4cb6
-
Filesize
8KB
MD500d4f522abcdb4c3af1b1bb578b34357
SHA110ea3e213b958ea6de2513a63ee2f41ab4dc6054
SHA2560a789dd2e6c0d718a323cffb1208677ebd58a471380e3b030fd767e13fd47e44
SHA512961eca58f95d06fb11bc6a4f335d7cd43aa078bab6e99d6d487c05d5a2d13756ef9826a534e19549c66ddf654098a98d426fdc47138490212bb21654554f82d2
-
Filesize
4KB
MD56414ba8a450c3c8f176e4509d33ee113
SHA10a4f9b06bfc7fd8efd32e0fbf015b6b64c03243c
SHA256e526a044479c3028ff2977f63f398e8a36da2ed05796318ec3b40218b320a4f4
SHA5127a76de1c339adc9247725a08a5d7b96c93000425b456cd4517d4c621152eae341dd1717a906b0dc81c6d9cbf0731d3ceafeb690321da1f405b204d679be9d4ee
-
Filesize
8KB
MD50ebc6957344ee75314c49416ffd2eb5f
SHA1838fbe72a155ad0c7fb36fd5ff29d27e1d7b6fef
SHA256b32679f9ff5ab949c23cb2eb4dd657783b79de25f4bf573876480e68d70ad340
SHA5128009cb44137cfaf8fcfa4af24826be9e60bb5b055a91aeeb7de6484f1ec32a68667a5e7cb174e12c899b697b3ad7dabfbd700195d43d1b32e91f41968899ee6d
-
Filesize
567B
MD57e8f07e96a2a020ccfe18d57bbe61f13
SHA126d069cc2676f0c226649390913d69c9c2903e20
SHA2569a40e63d3d867e1f7be07f11a36f82d4a99e3a9440b616608bbcc54c768624c5
SHA51216660ba573b381ceb47d590bde33d477f51304e01eae956fdadacb5311bc566f17bb02cde903ba0b045107acc5395c2e7201e16a4dcf61e44c76c5c24762db05
-
Filesize
90B
MD5b30d1c2c523f6d8b126ee8c6e0ff84cd
SHA1fe383a3697d7f4b18d863b7f4ec888bf22f57e64
SHA256a5bb19288d3e469d7384e8b345ac7ca65b4a70249bb02b50091a7ad7659261ae
SHA512d455451b68be229c95b6a566b9500a6a3fcbdab9c5464da9a1a31a8ed186438c6ae803e6ff009ea0d7b6de9a7933d65460d3372d92937e454ae71ae77b7ba4e6