Overview

overview

10

Static

static

6

a72d66fb84...e8.apk

android-9-x86

10

a72d66fb84...e8.apk

android-10-x64

10

a72d66fb84...e8.apk

android-11-x64

10

Analysis

  • max time kernel
    40s
  • max time network
    155s
  • platform
    android-9_x86
  • resource
    android-x86-arm-20240910-en
  • resource tags

    arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
  • submitted
    26-10-2024 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a72d66fb84d99dbb0da535a64165f62fd4fcae7a20cdf962339f5d33100497e8.apk

  • Size

    4.3MB

  • MD5

    9b46deca3d3c6b3849398df2748256ff

  • SHA1

    62c78c8524218a27341b3190842221d7bdcb22f5

  • SHA256

    a72d66fb84d99dbb0da535a64165f62fd4fcae7a20cdf962339f5d33100497e8

  • SHA512

    0aca185145a095203e982e12204a631b41ebaefcb974ea4a657a2ddc4003c0a6544304e0c473e277f208ee4b1c1443f6fecb207f5dd29cacfa3e814e68e7c1ba

  • SSDEEP

    98304:HBtIuFotkOwyLRjVNxU5tcoxcgUj2dSF7Pcq5aImkLr:hKyGVTU56oxEdgq5nbLr

Score
10/10
ermachookbankercollectioncredential_accessdiscoveryevasionexecutionimpactinfostealerpersistencerattrojan

Malware Config

Extracted

Family

ermac

C2

http://81.177.140.60:3434

AES_key
AES_key
AES_key
rsa_pubkey
AES_key
AES_key
AES_key
AES_key

Extracted

Family

hook

C2

http://81.177.140.60:3434

AES_key
AES_key
AES_key
rsa_pubkey
AES_key
AES_key
AES_key
AES_key

Signatures

  • Ermac

    An Android banking trojan first seen in July 2021.

    bankertrojaninfostealerermac
  • Ermac family
    ermac
  • Ermac2 payload 2 IoCs
  • Hook

    Hook is an Android malware that is based on Ermac with RAT capabilities.

    rattrojaninfostealerhook
  • Hook family
    hook
  • Checks if the Android device is rooted. 1 TTPs 1 IoCs
    evasion
  • Loads dropped Dex/Jar 1 TTPs 3 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Makes use of the framework's Accessibility service 4 TTPs 3 IoCs

    Retrieves information displayed on the phone screen using AccessibilityService.

    collectionevasioncredential_access
  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
    bankerdiscovery
  • Queries the phone number (MSISDN for GSM devices) 1 TTPs
    discovery
  • Acquires the wake lock 1 IoCs
  • Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

    Application may abuse the framework's foreground service to continue running in the foreground.

    evasionpersistence
  • Performs UI accessibility actions on behalf of the user 1 TTPs 1 IoCs

    Application may abuse the accessibility service to prevent their removal.

    evasion
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Queries the mobile country code (MCC) 1 TTPs 1 IoCs
    discovery
  • Reads information about phone network operator. 1 TTPs
    discovery
  • Requests changing the default SMS application. 2 TTPs 1 IoCs
    collectionimpact
  • Requests disabling of battery optimizations (often used to enable hiding in the background). 1 TTPs 1 IoCs
    evasion
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 2 IoCs
    persistence
  • Schedules tasks to execute at a specified time 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

    executionpersistence
  • Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 2 IoCs
    impact
  • Checks CPU information 2 TTPs 1 IoCs
  • Checks memory information 2 TTPs 1 IoCs

Processes

  • com.jastijasranber.mirtimashiniva
    1⤵
    • Loads dropped Dex/Jar
    • Makes use of the framework's Accessibility service
    • Acquires the wake lock
    • Makes use of the framework's foreground persistence service
    • Performs UI accessibility actions on behalf of the user
    • Queries information about the current Wi-Fi connection
    • Queries the mobile country code (MCC)
    • Requests changing the default SMS application.
    • Requests disabling of battery optimizations (often used to enable hiding in the background).
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Schedules tasks to execute at a specified time
    • Uses Crypto APIs (Might try to encrypt user data)
    • Checks CPU information
    • Checks memory information
    PID:4345
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.jastijasranber.mirtimashiniva/app_pipe/FRPf.json --output-vdex-fd=41 --oat-fd=42 --oat-location=/data/user/0/com.jastijasranber.mirtimashiniva/app_pipe/oat/x86/FRPf.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4371
  • com.jastijasranber.mirtimashiniva:AppMetrica
    1⤵
    • Checks if the Android device is rooted.
    • Loads dropped Dex/Jar
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4595

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

1
T1603

Persistence

Event Triggered Execution

1
T1624

Broadcast Receivers

1
T1624.001

Foreground Persistence

1
T1541

Scheduled Task/Job

1
T1603

Privilege Escalation

Defense Evasion

Download New Code at Runtime

1
T1407

Foreground Persistence

1
T1541

Hide Artifacts

1
T1628

User Evasion

1
T1628.002

Impair Defenses

1
T1629

Prevent Application Removal

1
T1629.001

Input Injection

1
T1516

Virtualization/Sandbox Evasion

2
T1633

System Checks

2
T1633.001

Credential Access

Input Capture

2
T1417

GUI Input Capture

1
T1417.002

Keylogging

1
T1417.001

Discovery

Software Discovery

1
T1418

Security Software Discovery

1
T1418.001

System Information Discovery

3
T1426

System Network Configuration Discovery

3
T1422

System Network Connections Discovery

1
T1421

Lateral Movement

Collection

Input Capture

2
T1417

GUI Input Capture

1
T1417.002

Keylogging

1
T1417.001

Protected User Data

1
T1636

SMS Messages

1
T1636.004

Screen Capture

1
T1513

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

1
T1471

Input Injection

1
T1516

SMS Control

1
T1582

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.jastijasranber.mirtimashiniva/app_pipe/FRPf.json
    Filesize

    1.1MB

    MD5

    e89f48f2a8213f563d97eab7a72a3e06

    SHA1

    2e06175fe60377214d0ffcfe37b2e1c678da2118

    SHA256

    e280957e5cac73bf964a8ef8313d91a32e104b4f153fe4ad5a65bb578c156570

    SHA512

    150c796fadff9fa88730df8db126c4907e1c9a683aabe135e281e9eb20829f89ab1d2cd57c964b654d1aaa9eb5d6b986b4e38159ee0005b96a30a326f8b88da7

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/app_pipe/FRPf.json
    Filesize

    1.1MB

    MD5

    0c1ed116ed3628785f16ef3c48881b4c

    SHA1

    882b4ae9fba54bf011dc570676f6bcf832174916

    SHA256

    ce3601fb3aa0138054d3aa13af922499a7bfc7688d7951a248f8951850913080

    SHA512

    72fee7e6762b5d8a7c0b7b97a053f3fddc3ab36877730c99af6a6ec1141c7e4cc9935a672ce357fc3aadbf5bd9f0228e2d0427e2c9bdac6d0c0d902de537f61a

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/androidx.work.workdb
    Filesize

    32KB

    MD5

    1c4274aa7a9a5cac8c6d1df71e4588c6

    SHA1

    abaecd685e01cc68801292e3dc7085654a22feba

    SHA256

    3f6cd5f480ae69859b7841450f3d032c528ba385ebf9f371b9c8fdc6eb4231be

    SHA512

    1adb95935798607bd36cedcd183924d3068f50097d017b278da7caee7771532b61ec3606f6189b6dec8426eb038fe40be75079ce35894b1a8e0d1d815261150c

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/androidx.work.workdb-journal
    Filesize

    512B

    MD5

    cc201859a49005e9b8406dcf6cc45368

    SHA1

    bdcb04bcc10f625aaa021633e01399e0c0b538c5

    SHA256

    98643878ec5a0ee67f29f0bad4fa6529d0fc1fba3aa0dc27b2cacdbda7e5d237

    SHA512

    9d6e96740e3628bec5afadbb5cb182640eebcc98d6b0347f7fb03723562a2d0146d71a8cc37da3f9f91521c4c1bc564f890c62c9aad7810bb5464b3c02739eae

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/androidx.work.workdb-shm
    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/androidx.work.workdb-wal
    Filesize

    108KB

    MD5

    dc2070235de00565a99a48588f4bdec8

    SHA1

    77c22ed80268e507c82c59e0f15c138de3c56c98

    SHA256

    c520468bdfe6ed5fb8f7397ea2b1fe5db9bc6316744e65fa9c7e64cc078a4164

    SHA512

    440e1684e665d6967155560adf76d127eff520c05e773121445655b8cf34f58b885004df13e757213615029a4b7e78f3992d097b34b047167395786aade9df35

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/androidx.work.workdb-wal
    Filesize

    173KB

    MD5

    4a9d699d63410455d9e90b252c3c4795

    SHA1

    984fec6ef661e393b696a821093df7dfbc1a1824

    SHA256

    d1b8c5f74aa83b73960e77ad0c08c0b18f1fd641e45b35cf0ddb674e91bae621

    SHA512

    49552c733456ec7adadcc6518d28186d8f2deaa0aa90744c0c2fa50b13a8a5901a235f6ff60376f3af33f51285f48545954ea1d39015c6f2585cd9e7c5770f5b

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/androidx.work.workdb-wal
    Filesize

    16KB

    MD5

    d2e935665ebe62db70811c07f3f22a3b

    SHA1

    6ba8f1cf3df769bff3e0356099c714aaa1135131

    SHA256

    c6c9d68f6384da2c0530e898669ad59dafdc4a8c9926904d73261c6767de8a39

    SHA512

    633ce0904ba73bf5720c0b7e8a3a811979ecb599b018d5adc603aae19f355479d819e622f3512392404e7a7185c1540cd535c4ecb2fb213c7b442bef11711547

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/appmetrica_vital_20799a27-fa80-4b36-b2db-0f8141f24180.dat
    Filesize

    231B

    MD5

    98b2d2efad651b6b9499597686e942b6

    SHA1

    52fcb6e1915b1d06e38bb8dbf3bb21e73d679a80

    SHA256

    82dd852695effd9bad6688aa3461ead3e1c5c07f2c7bd89fb839808e2da10242

    SHA512

    f14e9f4553be24e3caecb2d186d6c4d2c681dedcaff89f1b5460ed5a5d392f8b2ebc319aa6f05148fae2f81506c991df9ea2453c0e1b842ef46869bedb33123c

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/appmetrica_vital_20799a27-fa80-4b36-b2db-0f8141f24180.dat
    Filesize

    306B

    MD5

    caf8619207790a0cb388f8777c3141c2

    SHA1

    c92a0210a374b9b4b8f2de3245cf29532e3d7381

    SHA256

    9ece7bbdf2f3298bcf1c309ec15b4a5d4f90fa882c3ae7bdabc53d734749a01f

    SHA512

    1013afe95b02af04d9e00a2e25b20508fadba4dd1a314796c690f9a6be202208ab3fe267603d8060c8932c91dab17048ead5a951113e957ce4b9e6fd0012890a

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/appmetrica_vital_59e53daa-636e-41ac-bcf5-45bced6b4fcc.dat
    Filesize

    20KB

    MD5

    995ef04efdbc8ac9b7270598b1242cd1

    SHA1

    8a55ac350f5155459c32157209ff48d24214eafe

    SHA256

    c91b9d5130acabccbfc5655ea5f7451664ccf3ffc8bd57e4ca7ea58840ee7845

    SHA512

    3517dc7fa0262906fad22db5bfc9165e99eb14af7219c5ef44b58c164f2cd93ae8c2e6df5666b14d6d5f7d8ff4daba8e63469f1bc89d122123b215547d5da7ae

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/appmetrica_vital_59e53daa-636e-41ac-bcf5-45bced6b4fcc.dat
    Filesize

    233B

    MD5

    ec4aebc8afbdbe29919cbf297466e5a3

    SHA1

    030860d66c0b1ea21d1fc224579f38d7dfbedb09

    SHA256

    2158b572216132f3cf56028506793105b6a6807e26f9e0ff105c1c68036c7d34

    SHA512

    ec804fd96b6ed99d28901c2a2bbdc8b8fea35477b24474c006389939035f5b75a39067bad20c4bf70fc8545dbce81eedfe9d4f689a639a34ea9625b6f55e1a1a

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/appmetrica_vital_59e53daa-636e-41ac-bcf5-45bced6b4fcc.dat
    Filesize

    242B

    MD5

    5824da486c1145a967733467cb95106a

    SHA1

    2134afe277fd91f14f07a51d3d3300a2d7ae531e

    SHA256

    32382257f2df077c8ee446498ea4dc7aeaab02521b10c0a20b0877bf1e41cc9b

    SHA512

    be71c8fe5b3a524199fc9083b0fcfe38dd8a071ad905fc8cdb6357f534b3a2542caa3d7447b28a0da0452b82da74c62a41a25c04bcdf535f338f43ed4ba7cfcd

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/appmetrica_vital_59e53daa-636e-41ac-bcf5-45bced6b4fcc.dat
    Filesize

    242B

    MD5

    fc2e05efc87ccc5458c8dcca2f2793a6

    SHA1

    7f4010708a789818e359b6928a0f51a65fec0e75

    SHA256

    898dd53083e1215c06088dd078e4b901ec985ad8eb39366c5cbc1216dd2391ed

    SHA512

    52c337ad615d97ebc51cb8a80ebda109e00bb869f5f1d0f4bb52cde6170241740ff0cc941e92b9e01500ad4c36c573d286fae65704d22e61d088570ad9ed54f8

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/appmetrica_vital_59e53daa-636e-41ac-bcf5-45bced6b4fcc.dat
    Filesize

    271B

    MD5

    e72e350c1ece2c1849c3c735bc98d527

    SHA1

    168a9b1f4e2c4ecf86042088cdfaf19cbfaf35c5

    SHA256

    796343a423ce421d49911b1d3ac65c32cf5c57030835c8d66c0d7ac74d64b1c2

    SHA512

    d554d0a81064d68182a4fabea2f83a052d67128961495c6ea858915d7563d075060ce06b9ca50c86266eb7c1f6530185bfa9a3bc6f03a628e656311b66dd4fd9

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/appmetrica_vital_59e53daa-636e-41ac-bcf5-45bced6b4fcc.dat
    Filesize

    309B

    MD5

    2da909700f46d23fedb1fbea9d7169df

    SHA1

    78b9395f2bd8605f662f985dc60db26c2845910f

    SHA256

    e3859e64ce702f3efb26699bb6485eea8e669d6082de0ef81178137379193436

    SHA512

    78df25debea6ca78f5d134b81cd5196033ce212a56624a1177e901c8ee616c689bacf8d54c471135ebbb8d1bac2aa9a5852ed1facf3e279d2da2ab385ceb2d83

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/auto_inapp.db-journal
    Filesize

    512B

    MD5

    216caab95d1a589d71683f4e4d8365ac

    SHA1

    9750fdd2182519a0e7c97a99ca29b9c5e594201a

    SHA256

    c0fe9a88ce6e56b3f58fd5c5dca07292d95565fd26023f42553c3bbb7dfffc8b

    SHA512

    34be11e0d1cd1da9704a556d6e15424991a6f53e7aba076e3f7a444119b0890af103e0d20c168d09e5f17f9d43e4001a7832fedd518fe155b8f2bc867572057c

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/auto_inapp.db-wal
    Filesize

    32KB

    MD5

    43ed08bf72bf3a980e2dca742b454c8d

    SHA1

    1b3e5066f9108120cefdb2d641f6b418b34c8d71

    SHA256

    bc039d174cfb63b1caa1d2dc2cd46800654bf984fcad4d724721cff38c8cee37

    SHA512

    2ad91262dceccf96dbe9e1314641f8f1c199226a9571c04b0733461ffe9a82314fb1b29c8d2ee4a8ec84447bc007874f8dda5da39f35812f7cebb379503179b2

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/client.db
    Filesize

    20KB

    MD5

    5dca09950419a96f727c80384db5a662

    SHA1

    541470157b3824aa4eea60f9799e22efe296c369

    SHA256

    5b375bcb27b2bfd6ece47345d1537a49a66d9edc918bf31fa0281cb053c274ba

    SHA512

    f30940559d2568d4630d39944867a38be8fb7ee93ecd79848356d40ea285165934f1df6ce08f9390e556cf6deaf0f154f1d27c04eb1f1c27fb3e904c15fb2ad7

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/client.db
    Filesize

    20KB

    MD5

    ab7de793d86844c7e04daf91dc391c64

    SHA1

    bd3e7e5461a03895bbc9e96e939474bd4df825c1

    SHA256

    13af18682a4a2137240bc97ac66c0da53eab0a878fd21f6ec6c47a5d9b3a734e

    SHA512

    5b1de01e329290f10cab5d91a23d22e30e2ec5b6d5645f6805dac33bd9d809cef1e7d26d67d5d3345bd6fec017441a0c7c51646ca7e07f55f505de84c5d9bb23

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/client.db
    Filesize

    20KB

    MD5

    f070bec2a4ef8454869559e9041f10d0

    SHA1

    219111e6b013b8adfae5de946829b43df78230e9

    SHA256

    188a3be8fb788241cec0c39c86af086b8015ec52740a826c8f777c185e728059

    SHA512

    50f75c402adacdf293c101a2b2a46bb0bb3a1ebe3681fb5929a42107ea306ffa75243e119cd2cf2265adb806ad6075015eb0f44d0f2264975a05568ff22b65d5

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/client.db
    Filesize

    293KB

    MD5

    e48c29f74e3bab9b4dad50b34c7c789d

    SHA1

    70cac0da5e00c5704b8a4ea1839998c1e5d81bcd

    SHA256

    649c9ad9b04d180dd3fa390df4a436c35258bbc3acbb25e75bb9e9a063de2fb2

    SHA512

    db8405cc387fceee114e6a3e4c5bea67bea97a9255827233c3d705ba3d71360fb8ca566d4c142e6689f32ab0c444f0b63c5dd77ccab330e789115d9f29600ba9

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/client.db-journal
    Filesize

    32KB

    MD5

    149e5798c075f875861f0b59173b5b4d

    SHA1

    bf8224726b14da97535ebac3bf737090de91141a

    SHA256

    7d7ed3926322792c8acb3f70d54a5325f370025448faf974ea82ab5531fb1074

    SHA512

    7b9cc833a6a4c61b30e8ec4bf8abe9ae80e99265f98aa3cfe5bb1c8dc9599689c81dcd6c44a8a86838f9ccd7b0ec52d7e769bec409c8b3ca2d266caec5a5ec75

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/client.db-shm
    Filesize

    32KB

    MD5

    9eac29f62be79bfcb2146bcf79c0b660

    SHA1

    df5f49d122c11922b95642c37baaf1b91ea39120

    SHA256

    27b66d31c376bedd13ac4f58dc63b9aade986fbb6d53b0b9de4914af66ad609f

    SHA512

    3229cd47a7857d0adaed3d35d7d2f8bc347988c1e88033a3f682adc746791a7d90adf78e6f780aab0be8719653649a83807a60519d90c476aee48943fcbd21ae

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/client.db-wal
    Filesize

    32KB

    MD5

    b005f038498b77aa5ab91692e8b7b734

    SHA1

    99018c784c755bd33434d3d5e16ad7809746aae9

    SHA256

    16e15d9df029b27135e80448231e093cfe721f20081f7d18010df7cb0bc2ebd9

    SHA512

    53e417cc6ae3f9c5cf55b59fb595a9a8f4009620f4f45a4ce93462671c409b60eace779e09965cf9221a3ba82c28882f28b7d1eb2b6a01e2c3b7a9d7085b28f7

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/client.db-wal
    Filesize

    8KB

    MD5

    b0bcd7680b33c9c938d021ee495093bc

    SHA1

    9cc547f7effb4d67ccf4fd57098b202c7190fb4e

    SHA256

    90dce133fee181a17fbe667adb3e73e5da7f5b23a4cc8f28e5d6db9a780abc9a

    SHA512

    3eb4a3c69b303cac0c39c63bef7f1b3adcf92adadc25c22411218369be9115299ee3b660fa6f72935abd5d2c3b932f4c6aa149349423cedc35734afe388d3187

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/client.db-wal
    Filesize

    8KB

    MD5

    719de536f21a8f3704e8b0276345a4f5

    SHA1

    d20b2d300ae182a50ec333b42e641b7e5cb30157

    SHA256

    43a0dbcacd6617616814adb019435b4db63f2bd2694850061312d0c19ef76343

    SHA512

    8d264a043addba7ba60a2783803e2ae28046988b495360e8adc722f37ad36bdcd2576cedaadb6cead0b6e869d4cad536d3f66875fa0e714cc5a869fa8c4d9c6e

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/client.db-wal
    Filesize

    20KB

    MD5

    6cf3ed6f261781740ce62ca271513348

    SHA1

    af53766e7103242afa94f0f56f4a64f81619054f

    SHA256

    310ba4a44c82534776f0009e460417e84c65694d9e56af52bda1656d2bc6ba89

    SHA512

    b613c10a6cb417dfab87a61f683df8900c422bc4c6665f6e71884dbc7da876718a654b4922488eda7ecd714cd14443c76da356c4b3111f835364fbc68e4f3a51

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/client.db-wal
    Filesize

    8KB

    MD5

    92f9602ac85bbdfc1320a455fb9e0f2c

    SHA1

    8f92f229e743d1aa096e8538300b7196d9459a60

    SHA256

    76ca467ec6472790eafedb559868e7c6c88f04422efe4ad2eb576fd4dceea67e

    SHA512

    153fa2c548f628dabd8d559bf42972d66ffc56a8d8bd610ea7cadb4e0127e01d1bcd883a4124237256f97c3f162edefd31155e95d42ec108651ae29a575ca47e

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/component_20799a27-fa80-4b36-b2db-0f8141f24180.db-journal
    Filesize

    512B

    MD5

    3444c8163c0950d7d40a38cdd2250eb1

    SHA1

    297f689abdc67e5fd76296d82b5eacbb2a16b05e

    SHA256

    d5e1e68e86c9b14011ff77d6d78bf7f5bfb4892d77788e140d14b22c9b64e025

    SHA512

    c212ca62698452187fdea2c9b643d28392d9068584c6de31132ed26213cdfd10ad8f51a8efdb1e835433bd991753df07e36cd3dc4bf47306989b31b7d1cb7a1a

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/component_20799a27-fa80-4b36-b2db-0f8141f24180.db-wal
    Filesize

    346KB

    MD5

    e7caae6cf48cd4c82709b08db5768526

    SHA1

    c821533612126240962c78618c14600b6c03ae5b

    SHA256

    71f78d3fb68787875f04f402f05f7442a8940eed2c09ed0ec55cac85f4422d53

    SHA512

    8120b7a086c2071513cc67519b92f7935402d3c231629c4130ac8ac47a42aa16efa71e5ccd667368b112ec7c8fd0b1c530753a1245a21c0f44fc461bc42efb73

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/component_main.db-shm
    Filesize

    32KB

    MD5

    a0c45a271d2df65225b01e7349effffc

    SHA1

    76f4a0545eb9f7d82ca709787c2c451d9958e75e

    SHA256

    567dd7ebbbf965ec9ea002cd2068200e99978e16128af4091439cc12da190383

    SHA512

    50118ed795fe8e729f868f50401eff7c57cd8921c228b64aadcf50355d0fb573b4752beb815ea40bc6d1cef429b903a7e44e32594e130dd6ea101a8f431c45ec

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/service_main.db
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/service_main.db-journal
    Filesize

    512B

    MD5

    622525186bb0fa5adedfca3aadaa59b3

    SHA1

    df3498f86804aaabd32c3ce84947ed6f20388c25

    SHA256

    22b7e45fe8bcab6f2bbd52124804fc7857fef1cb7b9154f6913c08c47db66e7f

    SHA512

    601f279e5f0eb837853923979588fdf7afe9eeb4b700a6e842c6240830d9a828352fa40a998745cffcfe491e5224e506ac31a6ac33f449ae9927d51e4548b738

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/db/service_main.db-wal
    Filesize

    289KB

    MD5

    adb1f57df065c89da6516aa569c12195

    SHA1

    44b302a3ab3864684f9bf0774032552781567689

    SHA256

    1dfe8e9f6691df29c53e6dfd5abec3ab3244cd535dbb5ea6e7e6bf74c1af9641

    SHA512

    c447b0b431f98865ed74b4abfbd139e983ffe0c835a0542f88ec18137f27ec8400ce0dd801cf3d62d3ac48047d98798bbbb9407cec606597221a69ffe8f04f19

    Download Submit

  • /data/data/com.jastijasranber.mirtimashiniva/no_backup/appmetrica/analytics/uuid.dat
    Filesize

    20KB

    MD5

    a0a97351ab3654c2592d0ac1908ce814

    SHA1

    2a91000645d3939d3f617408696af922e54a210c

    SHA256

    8bf4bcc4cfce910daa6cc86901626d1cb9075e6605dff2a86d248a76f4c5397a

    SHA512

    7c36f8ea7c53535722beb83777d7fb5711258f1aca83cddae016307b6ddda13fd81b6a4797631b973242175e591e673689ed930ec42ad6de3e2c86985ea4643b

    Download Submit

  • /data/user/0/com.jastijasranber.mirtimashiniva/app_pipe/FRPf.json
    Filesize

    2.6MB

    MD5

    70eb2331bd3bbc68897aba7b1b34defc

    SHA1

    efe54a97438e2a310e49eb2ef23fa6577ae01d64

    SHA256

    58b30ba43f69d6015defffa439f0b5ba5b55023de314dead8b9a038f592d56ff

    SHA512

    83f093d4c5b60fe2c34930fb9f5f5ae22038b18fb82c7f4921d501afda9d39577c714a9d1607fde371d446ca09084730fcc5771ecd45621c8e5782130a52b7fe

    Download Submit

  • /data/user/0/com.jastijasranber.mirtimashiniva/app_pipe/FRPf.json
    Filesize

    2.6MB

    MD5

    a5d148b8554d38abd9789a54cb3d2ecd

    SHA1

    1e6592bb2dceee2fad8fe7d08d745c15ccedbd52

    SHA256

    810b95b1f2800b1f62f9212a49f93d9a90f39d71a9702a20c801b87372fdb9b2

    SHA512

    287ee0f3730167423d0cad6981f9b9027714354107c35300b27337e176763ebfebd050d26057e1f0fcb4e463084609967307ffdd02acc482af48752555208a39

    Download Submit