ca8dc8043b337b7e5f1ae21f2dc9a7bcedb14ea295d2b81f0c39ab77298d310c

Analysis

max time kernel
123s
max time network
131s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
06-10-2024 11:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8c91ec587d8f8454d21ba54954f97c19330e7fe665eec988629223e71b306e5d.apk
Size

2.6MB
MD5

e1e6a2a7d00819ea1210434048e82e53
SHA1

0cc412fd03b7a9b9c2ee180de17aaeb47ca88d53
SHA256

8c91ec587d8f8454d21ba54954f97c19330e7fe665eec988629223e71b306e5d
SHA512

b3e89fb1a0b451453d860a801c57c8904f10ec487ce4accc19e6734818e874aac60a2eb1af37f50f7116f14dcfc36ddcf4f9d7debe089e21bdd6ae0c1f001ff2
SSDEEP

49152:HkJ/2jrkmNBOh8UyV0l2XO9SkpfnzU2K6HC1P0+PLV3glTzKmoq/r31:Et2cAQVhQXCSkp/42K6iN3zul/31

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	diwix.gorbah.com

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	diwix.gorbah.com

diwix.gorbah.com
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4926

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/diwix.gorbah.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
ad406ed6a85b152a785102ac1a3288e2

SHA1
b9b32cb8c620ea5bbbb872016878bf4381c16bc0

SHA256
b8994ceecd378c6c05f5ccad4a5f1de07df3ff32768dd5bffda7c15032b97aaf

SHA512
48a9758b5e31c1efaccbc89334d78f176dbfbe2ccba04b97b5d6dff1eb76afec747aef5ccccc90eceab2b27bc342f1af3387eccab1df5efe3acca57c000efb91

Download Submit
/data/data/diwix.gorbah.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c972fca64627e5424f7d8d18ad0a4c9b

SHA1
7d9750e578068546cbcd5f0c2887a6ec01eda34c

SHA256
6fb68a11c70f1dfa166634c6a9c78cf49027525bcc9132af11c83f13dea71674

SHA512
3cf47f304007678cde5f07477d558d787f64b841e2aecedebe03dfd2f0d6de0612ad4dd22759b912e222b038adf7115bc5371c19a0ec9a17c77b0f000e2fbdf5

Download Submit
/data/data/diwix.gorbah.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
33f09bb0d2b1e6eedab9562b92596579

SHA1
0179cbd702415bb82187f599058f916409c525f6

SHA256
66d2dc5d16816ac874cda99c2e61f6682caf246953f71eef7a84510fe2053551

SHA512
511ca68972985cecc05c6fdafbfb52408e22585d1677f68064827d2fecc47e13af7300ae93abca9b6a564bb52b32f50b249d9008c60220c42a584e7378a391ac

Download Submit
/data/data/diwix.gorbah.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/diwix.gorbah.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
f795da55f287f862c3a51834bd278f6d

SHA1
335bf86044e2eeca06823fd9eefadbbd5f54b7ba

SHA256
f263c1ba299b1e66c4b63c6badbe882d0911c0364f128d5148e9cc38b2609ceb

SHA512
08a550a4be8496161a5d9fc499c5411f6f4616b753468d32875dfb2d73b9d568c111491fdbd81a93e25ef2c59650948f8d6eeb106917ea7ad73a610aa7f03de6

Download Submit
/data/data/diwix.gorbah.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0ac1c06f14b671142d3b829ccfa864dc

SHA1
99bcd155418441c9c7028ddcde9ba14fc36e98eb

SHA256
a11bf7ea636e7bcffd5f6187dc97ac377dec03dc269cb4cb62ac0393040eb087

SHA512
32c36dfc4c5230a115cf706b5587ef300e0834d4e49025adcfe52dce27c376d83ddd78627239c51cf039e40ec0df36340e9de089e65d6c24921747fbe510823b

Download Submit
/data/data/diwix.gorbah.com/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
3740969abaa4f71c76dfa99e86125b99

SHA1
a21557355f7a6f81b5424f79b6df4732315f13d0

SHA256
b119987a19344ba02e397077adcb1270cea08a2c1560e771b0ab49d121cb523a

SHA512
ba2dc4e19d99b53c323239ebe4a3e104c7a33b5d670b5dd3e5a2135fde7c084bad3c543f1b11c7edf80d70577e66285c814f779db47f1ab568d4e2241ef168ce

Download Submit
/data/data/diwix.gorbah.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7f7c05eaa585916b9e6a4ae187906004

SHA1
b222ac603489ba46ff24cbdecf92f8a852f6c33f

SHA256
e6d15fdaa33c23eaea32ba028a014da7826ab675ffd06763b5c3159d7ab4bcad

SHA512
d48d774a27ecc08cb1e693d2253e3664282aef5f5e3bcf671f1645a37d7cc4de249e2888f8c98799beb4ca029001ab345eb181dd86b68b109eb507f28a14b961

Download Submit
/data/data/diwix.gorbah.com/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
0f45f1258d6807111298fe8a08d8466e

SHA1
8a606adf7b21f75fe32c0cb84e140b620621a372

SHA256
ca487ddbe0ca4ddf4a15021c9373d9ffec19abe7df330e81a3a246dc4de9b97e

SHA512
26b3592144dff633d362bf78057b841c36d66fa868def044ae773d10d74e92c21f4a4c8b29b2a34c3be74f16c65380d8885dd61fb44b9492d37c12ff0dc315eb

Download Submit
/data/data/diwix.gorbah.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
22a48d957eb66337a08d14c97d4e7403

SHA1
ed8750b8c7a5744a358dd70e637987bd005228af

SHA256
c45da0e15802ce12c2e21ca5b60c51c7611814dcefadc235c978cca3a2e8dd32

SHA512
f34472ef21c16d8dec022ca13dd7faef2c8b3c144dd121beae015364a8ac8d658cd9d19cc97271f4ec06961e33eb0f5afb27b670e48ac05e796e1e3121c96a95

Download Submit
/data/data/diwix.gorbah.com/files/PersistedInstallation5012893864700745816tmp

Filesize
569B

MD5
378aeebbbe2b6d9f64f9dfbb099f134b

SHA1
de29667acb26615839f84db617fd46aedcf81727

SHA256
f10c2e486683f48cd76cb671f6b0a9891fb6d9b8495097e7767c96b734f49bc1

SHA512
a5895458f5abec54f6211243ae8be36a9fcfee151b634990005adbc410ac3316a3da203011cdfe0581178928aaeb37e4368f3a2140bac316d219b6cf71c36431

Download Submit
/data/data/diwix.gorbah.com/files/PersistedInstallation8259463720222250950tmp

Filesize
90B

MD5
0ef8f770c228483662cb876e26e0c23f

SHA1
4fb824b853cce24ec15c0472357e7f9efe398aea

SHA256
54f4940a32f3c100c2ca9b2b9938e2f565d9ef1bb87b7e550006c1a535a7e405

SHA512
51a83017f39dd84114d9bd1125a6ba8d45102118c095d681f03eb0f26c7cd719427d187af56a721e970eece240edda28a977d70c881e1abd4a2eb7f3cef27d3b

Download Submit