Malware Analysis Report

2024-12-01 03:01

Sample ID 241107-zt734aydmp
Target app2716320-wogdjv (1).apk
SHA256 2e938a8c2fe83ecb18668babdaba364e9f2c9875f060e1a4adc7f8339ead3f40
Tags
discovery evasion impact persistence collection credential_access
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

SHA256

2e938a8c2fe83ecb18668babdaba364e9f2c9875f060e1a4adc7f8339ead3f40

Threat Level: Shows suspicious behavior

The file app2716320-wogdjv (1).apk was found to be: Shows suspicious behavior.

Malicious Activity Summary

discovery evasion impact persistence collection credential_access

Loads dropped Dex/Jar

Obtains sensitive information copied to the device clipboard

Declares services with permission to bind to the system

Acquires the wake lock

Requests dangerous framework permissions

Queries information about active data network

Queries the mobile country code (MCC)

Registers a broadcast receiver at runtime (usually for listening for system events)

Uses Crypto APIs (Might try to encrypt user data)

Checks memory information

Checks CPU information

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-11-07 21:01

Signatures

Declares services with permission to bind to the system

Description Indicator Process Target
Required by remote views services to bind with the system. Allows apps to share and display views across different processes. android.permission.BIND_REMOTEVIEWS N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an app to post notifications. android.permission.POST_NOTIFICATIONS N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-11-07 21:01

Reported

2024-11-07 21:03

Platform

android-x86-arm-20240624-es

Max time kernel

48s

Max time network

49s

Command Line

exercise.apvxm

Signatures

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/exercise.apvxm/files/audience_network.dex N/A N/A
N/A /data/user/0/exercise.apvxm/files/audience_network.dex N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries the mobile country code (MCC)

discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone N/A N/A

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

exercise.apvxm

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 config.e-droid.net udp
DE 82.165.74.143:443 config.e-droid.net tcp
GB 142.250.187.206:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 216.58.204.78:443 android.apis.google.com tcp
GB 216.58.204.78:443 android.apis.google.com tcp
US 1.1.1.1:53 imgs1.e-droid.net udp
GB 89.187.167.38:443 imgs1.e-droid.net tcp
US 1.1.1.1:53 srv14.e-droid.net udp
DE 82.165.61.18:443 srv14.e-droid.net tcp
US 1.1.1.1:53 analytics.rayjump.com udp
US 1.1.1.1:53 configure.rayjump.com udp
GB 143.204.68.54:443 configure.rayjump.com tcp
US 34.117.255.242:443 analytics.rayjump.com tcp
US 34.117.255.242:443 analytics.rayjump.com tcp
US 1.1.1.1:53 exercise.odoo.com udp
US 34.173.148.21:443 exercise.odoo.com tcp
US 1.1.1.1:53 hybird.mtgglobals.com udp
US 1.1.1.1:53 cdn-adn-https.mtgglobals.com udp
GB 18.165.227.95:443 cdn-adn-https.mtgglobals.com tcp
GB 18.172.153.119:443 hybird.mtgglobals.com tcp

Files

/data/data/exercise.apvxm/files/audience_network.dex

MD5 9b8164be4f0ffaedadc82125e5346c14
SHA1 c4bf7a6383958b493ed5c4dd6a19862d366fca4a
SHA256 8e632284c9b0180ef28e309b4b0f282ef608cfb9d9046df899d8bdac227ea9ce
SHA512 352b3e9ef70839d0850ff7ca4a1f19f3df546412ae5cac1243a80588e573fea6371edd4c408a2edf1b48d70a10a5cb579513d3cd38a4b5ccf4b7528dd28704a4

/data/data/exercise.apvxm/no_backup/androidx.work.workdb-journal

MD5 919170aa08fb37f9a981d6117fb25597
SHA1 1162830e3d53c13995cc1230db47d9a74f3642fc
SHA256 313ec6ac9b7370d34eca809293e14523383373ecb752952e5f06bf53bdc5744e
SHA512 3e6e3f5c71699323d00e85dcc648ae367c21dd160ccd83a51824feb18b24ec22488e3924fd0258b3bf70bfa9e4c7d845304c0b09997948a0d19702a57044442e

/data/data/exercise.apvxm/no_backup/androidx.work.workdb

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/exercise.apvxm/no_backup/androidx.work.workdb-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/exercise.apvxm/no_backup/androidx.work.workdb-wal

MD5 0416ef13e11609379c041b205391e572
SHA1 c6d0cd56d4ad3d3014d40aac542e853688573a20
SHA256 504016df964f2c77c9d66acc6ccafedc7bef111af6fa6901d9b1e80a0e823181
SHA512 d597d6cc182da0b79efe32deb234e0944b7a5999fab449e5acc75296a66e1035e3584790d9e6730ce56197e572a1e84094f1321d03511dcae6871373b1413996

/data/data/exercise.apvxm/no_backup/com.google.InstanceId.properties

MD5 56d20295055172d771819ce9da345053
SHA1 d82d8cd84a799489623b73f42da39bc49d3140cb
SHA256 d9abe0246669b3d10d3a093e9bc7a8bc3c3840618d65468eec30176d54197509
SHA512 a9f9d7466f09414c8930d8a1ffd16b7f4ce0f5d0be1c8b104afb92ff6ed3b7ffd2eaa6c5062be060c7471f406870c710dc6d49ec5f958715b00e4f7968fd15e4

/data/data/exercise.apvxm/no_backup/androidx.work.workdb-wal

MD5 5dc913f5981fe1125a3cdba77f27ae31
SHA1 881351c7f5d06cb721b3a8b1d1c4d78fe8b32b38
SHA256 d37ef9f61e1911e157d761111655f761db463e277cf9214bb52e10490011cb35
SHA512 75519d8a50fce929e0a4e71c5bfa85ff78b261cad89acbe783fcff502641e9ded15f9e260e6b2e07e501640b5e79fcb59062dd6e84b8f47aa2b64780ebb018ed

/data/data/exercise.apvxm/no_backup/androidx.work.workdb-wal

MD5 27460df431def3bd90b550c215dff9f4
SHA1 17d04d6258602914c69a0ca013a0c356d65a2bd7
SHA256 24ec61ff9180cfb5fcedcd4d944480c5b15c90a2cde11fbe9f12f83a48b74387
SHA512 00acafe6b36248a35d8c18b2dd492fb65f84e1ef2c866af7ca8f09ea296a607265b8e98a9266a55a6d181da674749ed449b4a0e9a0e56a29241a58e648b07aa4

/data/data/exercise.apvxm/files/PersistedInstallation617705887748404182tmp

MD5 60cfc701f6a74b41590b522f562d4293
SHA1 185ac27ffc35e9c7b8644f68d154dd831e5c0b5c
SHA256 4365673e2ce76c4dca50de03c160367da6d0649aabb82ef19789beb48f7feaf5
SHA512 4415226c3d520dfa170163b001b046b5af758f93b4e70247efdc6b023e0c8898415477c27eefc0286576ab00737f0a1c91d35b3295cef39237a1fe8864a5aace

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-journal

MD5 b28240e129bacb99ce7c818047ac0db0
SHA1 a4ee3aae4c9e108075d9b41afac0bc92e8d623d2
SHA256 2acd3453dfcc8104af5a3500a7225c5080a4dd7fca48ec7375f7e8b3bbc45e66
SHA512 9ee89361d34268ee79b8a2166815e03929b9b8ec90df4e61b098460edf5680a289235cc4e0c40cc72d3eb1dd40196d97c705a75c1aed5c4ff2f2d21a0066233b

/data/data/exercise.apvxm/databases/google_app_measurement_local.db

MD5 7237409e0640cfab7bdbd429bf821a3b
SHA1 4c3da934842f8d4835dfe2a9c275a300e5123309
SHA256 5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512 c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-wal

MD5 d4a77ec135d4ed3f5adc818830ea154c
SHA1 14f1e76747cc2aaf086421550ac60e08f6936f18
SHA256 50422b072679e35007f521ae559b6862c592cde6fab6a0e25f63cb615e1576f8
SHA512 dfb0bea53a0b0a122bc095dd05585b4678ff0a2f826df3e0703a64d96b62366b76536ac2e07cb69b11c6a1f54027a61280ac1354d4ca135e1827264211b7a3ad

/data/data/exercise.apvxm/files/vinebre_ac.txt

MD5 b315d82df28ec4057ec4ce306a308cea
SHA1 9422e4ec2900fd94f468d9e2ad8fc76dd4c914a5
SHA256 00d16c8e7c97c2a1d9563bc74add07e8a082abc8a779a2cd44578f0664d96697
SHA512 04a7353c52c374f8bda4ef42b1896b57080a6ffbeb437a54c53bbe0170506f2458a2772a31fb55a592a473f967ed586d082477fc2cb8aa7f3467faee7cef5826

/data/data/exercise.apvxm/files/PersistedInstallation7299353608259664070tmp

MD5 9aa7097415e0135f530a249474aea133
SHA1 fd7aabfc931c8f7737dea887853a419522d05b40
SHA256 55c5990da0b4601186fe4e2b3e96f574c3ae789231709fc250a56059c53836ed
SHA512 9fe0b55a5db8e196eac64b344c6e9eb8d38a6fd3d1d48ed54b6b3d2b172a47102faad8e5c767cf1288a864adb70573bef00aff565cbb76479da8eb772dbddf8c

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-wal

MD5 9647923ec91b5f862f945e9ce89a6073
SHA1 da51b7eed4a33ffdace4060953a71f9abcb39383
SHA256 76e7b01edbf8de489f12f036d868a55992f6793ce40927578b8e6e55b01da327
SHA512 97409ea770721775fbaa374bb5428412153d149281a546c830a787dbf301d13510a643a4310048aae10f857f0787da7d6c2da433ba12b8890261a37049d1e5fe

/data/data/exercise.apvxm/databases/google_app_measurement_local.db

MD5 583d738c93b2a4c4f94233c73cbda60b
SHA1 a7d707be684bd49f3602c4734f11d608328fa170
SHA256 7a4e6177c5d5e8ce1740ad945d4874018fbd6404eb0c28a7ea151077223aac9e
SHA512 47ba1b33ca660995430a72c3dda872aec86b1942e910c0a9c43385c5b16798b822b57283c125f90ca1a6fa6a1148ba60e9a629727cb3044c63fcf2d258b7dd1f

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-wal

MD5 faf06c39cadd143b640e7a25f07d2311
SHA1 983d4e1d8a792a318de48cbae11579ecb4c3e493
SHA256 a11fddfd7c83c7008326f76a2ecac184554a33c06c2980d83b2479fe903240a5
SHA512 06d38822ff9c2bdba5f941a39c89ad8e09a37b139d157d30bce7f4857e4ea6ee76cc26024a35e1c40c1ea1711b7a0c7398a04639f368fa683e73d081befe68c8

/data/data/exercise.apvxm/databases/google_app_measurement_local.db

MD5 8c0cc8262484c16d87a9c4891a094964
SHA1 d4aa0f8728c3bad5ebc4c6c2b5d0e2a53e2b209b
SHA256 b84e612aa000c1643b1c1f1c0825d5c864c3954a1157ed978e945c76d40fdf88
SHA512 134100577ef241f9f693f29bbddd3164b582a0cc8482032b272a4168f8db24c65ad20246afa857be8bd4827426aa68e0ea59a23649de4582165b41f6e6db0428

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-wal

MD5 f0c4e62b4f97da8238534e703164fd4e
SHA1 c5dc2eef878fcaed86b837a5abcf11dd7dd0ea3c
SHA256 c7c267c211fd06648043264284a1722bf8069320f83fb978443fd51b257ec570
SHA512 8f11c9645ba54055f72c90d187ce646bf98ead077c12188c926658997125b0dfd1fa8bbf7d951ef7f1d77b07fa7ade901771490789768a56d10c9902abcc936e

/data/data/exercise.apvxm/databases/google_app_measurement_local.db

MD5 48ba67dd95c223135af19a4c3e15fdd5
SHA1 2d3257eefd157e43aa04ff37fab62a0f97574a97
SHA256 d702ef83872eebbca19565c7eaa3a668457b99951e077e1e80b45bf9bb09d3d8
SHA512 aa9d5c47772312739d1c1cebde83e912dc4c8bc9cff49215f4c908c3d12ba18c8720be3e6f4b14194c9239d0fe664bf0559a0002f219813bca5006a7795a679c

/data/data/exercise.apvxm/files/splash

MD5 0c1a63c938c0208a952e17e4eb429ff4
SHA1 1faa9a6952d9081384f14f09e2064594ae4b0c9e
SHA256 b93dfa2bd488ad5bb894b3213cb64332a75f8299fc8f94ace54b04ae15273a0e
SHA512 223e097d92ab1c9ae80e102727a52066bb8fcad47f7e1913202ac62b22fcc116bcdb39e5f21ffb45ec1490a143927491bf56291a08a10b1c76b78a5ed69f4954

/data/misc/profiles/cur/0/exercise.apvxm/primary.prof

MD5 33a5279364a6fc47323f472baaba97c0
SHA1 8f7cbf1c98b84497215f973568a917748139307c
SHA256 5b736796ab777ddb805c84f3ce5ab051b467ddcd62e2bd0505a48d9bc4a171dc
SHA512 cab16547246e5959133bff05fa3573a33e97624da06732427e6017f1fec16f34fbd6fe2b4e2bf05c91e1637112dd81e83f8b7ef3ce7eb2f7237347f74b14984c

/data/data/exercise.apvxm/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

MD5 5984f7769254c180b434d667492dcfc6
SHA1 4e6b5492a244f2cfbb5a7f7eeae4d820ef1e65ed
SHA256 20952610b48762afb778e7286d501188e1936652ba9e64feb0131ca2583e4b4c
SHA512 7b7e732da5e356ff1d830c26fc6e2492d390de32723949510392e5eee023b38707b30c04c152d281fdb1dd561d502f9615ca1c1c2af8ae6d06b0c65cea7872fe

/data/data/exercise.apvxm/files/profileInstalled

MD5 9b473d7a17b682a8f7c4fa17eb6ec93e
SHA1 ee46db232cbc76fd189da7520cb54dde634c5537
SHA256 95e00546235f0c0a53ad16e61a63be3a3aa5e02b95593756a8dc42d3ab3134ec
SHA512 eee8cd8bc8a78d2c4b922bf1e269d35b2e7137e689d39b9531566a37ce7a55ec3ac7c0e4cc20e664883399455c3c2131fa931b994fc1967670e5759030df2a42

/data/data/exercise.apvxm/files/ico_share

MD5 6185b000b5985d2b320ddbd1bab560a5
SHA1 a87dccfced0c43a3a0fd84495cca533806e8a697
SHA256 4b856eb39f691259430615bca472c0713d452451b822662563e936f252e9a5f2
SHA512 f5390621abc8b976c91074555597fd25adf973a7936bea695756fbc7e8ef07644b2681c61cc5c1ebea09e4fb9439175e292f84023b98fdad097e040ee40e585f

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-wal

MD5 83e1881be84b6bb5e4205454123f5e6a
SHA1 6516fd817b6b7b5a1e7c03a9d5bdf5449b8f7aca
SHA256 730855a6f2a7827020521c2297463741ae07a9163d5a90e3908d4f12af398b39
SHA512 b871e785d60771f3280310d5863dec396328d3a494c7737d188c8a659ad2eaf8f3884a03f032e5c017f806761fce25c5d6460356368672475e6c544ae515a6a9

/data/data/exercise.apvxm/databases/google_app_measurement_local.db

MD5 687a766635e617ca5a20ab81660280ad
SHA1 236fb55cb41de00476a303d3b0bcdaa79d618146
SHA256 19f8b012c6f29105dac06afa6feec97680ee40d836c010e58c18e9e7047258e6
SHA512 a09c7c47bf6469c502aa8de7ad9574697268df2cfc4a8e4e74f05957aa57ed2d23350aff4dc4e51bfc7f3ffe76bc5c5507639d945dbfc5f5616e7db1c80ddcdc

/data/data/exercise.apvxm/files/ico_notif

MD5 c37c380f8b74aa92c7324c4db64061ab
SHA1 1457bbeb2d9d24c480ac2e3b568ec7312cac35f1
SHA256 d8bed6485170dfbb2d8485542660f2c3c8fc8136b0f7854a40547fd48b4268d2
SHA512 bf2efe78bc3c5286bda0b77b00ff4f5ec5b9467b56e5f0e2fc269a1530253fdd8ab710d0dcffe0ec7ea04f5e3aa496a43a455f3a441151a6f81a58de6189c187

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-wal

MD5 91612ea8590272a6998b54c5db5ac717
SHA1 099cf6ebaba39c4991b01d870da15ae2d1ea5834
SHA256 3ed41769f510a3b456675596e33036adfeb1f25b397b015ca24dcf3a23192b6b
SHA512 e0e3d6cfbfd679a49997d038b9a1ebae488c5064ed1c5ffca34d8113721373b431ecf4486f7b199151723cb2f826f6958434f7150f9be875060b7264f1d4d7e2

/data/data/exercise.apvxm/databases/google_app_measurement_local.db

MD5 527dc320ab8d6b6b0504102f36988d8b
SHA1 2b3028bf2a0b1b76e25993ecb52185691024cc22
SHA256 e975acc795d8858cdc5228bab003114e1e6460b5db38ca465c0596653a1bd802
SHA512 aa66dbf7703abba4df52dfca8a43ab308725933b2d3ecb6811dbc829c27492f496e7184987825820282f58cee1a5f20c7d73959c8581fcddd5e0d4e92301a26e

/data/data/exercise.apvxm/databases/mbridge.msdk.db-journal

MD5 9f67f2359d60cebf42f7b4a0c5050834
SHA1 cb3bf7c87e59ee5631632a29097a1a082149fe17
SHA256 5f993260dbef1ee0d0accc93440f564976e777e54b1b9014e4cec8df4d0fb426
SHA512 9fc24ea82e8dc63b2bced82d01bca40dfbb3ca2d4ac6aae39f29152d3b51ed753a292923b2a6916d68fbd799551b8697d00cc3c104d64baeee8bddeba9dcf0ef

/data/data/exercise.apvxm/databases/mbridge.msdk.db-wal

MD5 c810a61615b03b33f578de0f8e8c42d8
SHA1 0a959fd248039a14d25794bb7cab7e46451e3513
SHA256 b880df597bc92c204631f0c0744b42b4f0c192a9dfbb0480345edf939d73ce73
SHA512 391f87c51faa27f2cdf090d1957fb5d609709b28bf00122f4d0e166e0cd2fb24bf8699c1dd2830a3ff81f92c0fbceef181a56a4cfc2a926af9ca4cb051d6eff4

/storage/emulated/0/Android/data/exercise.apvxm/files/mb/res/.mbridge700/mb/config/mbridge/b6ab625c580a40908260b5a39b9ff6cc.tmp

MD5 3d2381eeccf752b131e6cb02e9aefd65
SHA1 acf42545c52c8cfd26b7cc92010795cd72b50f4e
SHA256 36ecf1f1ecc21bc3dc5450a90e54eb0ea6fa14252264cfb837cf52bd210811b0
SHA512 51ada98424b791c4e5742e6ca6fe9522774938497dc75981ac78b1b3f04698e6e70df22cf8dc4167f4fa268e4396eddfec7102a1ea92d1fca92fd95c39c970f0

/storage/emulated/0/Android/data/exercise.apvxm/files/mb/other/omsdk/om_js_content.txt

MD5 2710e879a7b0781d8ef8e5a5e6b35f9c
SHA1 1955e65b0f84b5c7cf118fd0b2ff694af9cfaa6c
SHA256 70bb8f51e8554a2dcf42e9e97205f0bab3623190ead9bdbeb4ec8c77cdc347f0
SHA512 f5dfd497920482fc1884188e2c595cd17d050c93935f87d02eaac54fbe5b666af27e8f5d5bcc2930cd2a03edf9727dbe418f8d0fc81629f8d5a47e2e7a964abe

/storage/emulated/0/Android/data/exercise.apvxm/files/mb/other/mraid_js.txt

MD5 d265d6c539839f8034106635f3bd9b00
SHA1 45e82ee9aa8dfe81987d806cf222eabb19c4dacb
SHA256 61779e5e9b63efdceca3492897e0b02063c9c8f87cd1335cc735a3e56a1dd2c4
SHA512 bb49eedf3dbab86a06f918d3f43fbd7f2287bd17638301595ae5e40f0a326ed7cf6dbb28698d753632196c1fdb110cb2ce152c64ca19175efef7ead80d90692e

/data/data/exercise.apvxm/databases/track_manager_monitor.db-journal

MD5 eb8bf34daeaef98101f7c90398e7f3e5
SHA1 fb833c95647a89bd313f70a02ee106af2b217447
SHA256 837934239de2fe68c64048d27126bf0a9dea06701abb1845574a38b840e5fab2
SHA512 a5ad07fa5e03cbb2c50a30c5d0657314d76f169bbb5a774bbd671266665791469001727a76f0327362dfb0869d9f9c9b3e482efcb47d1277f8a8de7fb52df650

/data/data/exercise.apvxm/databases/track_manager_monitor.db-wal

MD5 821f7a6b209ab96c1ac7f79864691df6
SHA1 9700a6b1eaba2eefebfa84dba9f24d33f0eab08b
SHA256 e3390bc469a39f6913db97785916880aa387b2fa3580e2e6adc81df471561c34
SHA512 ce70f9501998601cde0b1512291ee6ab50731434f1a2a00df89b9542085c5caeff9178014cafb2fa268c8c6d2fc6c5c606259641734d2b62d5405497e70bf83c

Analysis: behavioral2

Detonation Overview

Submitted

2024-11-07 21:01

Reported

2024-11-07 21:03

Platform

android-x64-20240910-es

Max time kernel

65s

Max time network

66s

Command Line

exercise.apvxm

Signatures

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /product/framework/com.google.android.maps.jar N/A N/A
N/A /product/framework/com.google.android.maps.jar N/A N/A
N/A /data/user/0/exercise.apvxm/files/audience_network.dex N/A N/A
N/A /data/user/0/exercise.apvxm/files/audience_network.dex N/A N/A

Obtains sensitive information copied to the device clipboard

collection credential_access impact
Description Indicator Process Target
Framework service call android.content.IClipboard.addPrimaryClipChangedListener N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries the mobile country code (MCC)

discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone N/A N/A

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

exercise.apvxm

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.187.234:443 tcp
GB 142.250.187.238:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 tcp
GB 172.217.169.78:443 android.apis.google.com tcp
GB 172.217.169.78:443 android.apis.google.com tcp
GB 142.250.180.10:443 tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 216.58.204.72:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 config.e-droid.net udp
DE 82.165.74.143:443 config.e-droid.net tcp
US 1.1.1.1:53 imgs1.e-droid.net udp
GB 84.17.50.8:443 imgs1.e-droid.net tcp
US 1.1.1.1:53 analytics.rayjump.com udp
US 1.1.1.1:53 configure.rayjump.com udp
US 34.117.255.242:443 analytics.rayjump.com tcp
NL 13.227.219.91:443 configure.rayjump.com tcp
US 34.117.255.242:443 analytics.rayjump.com tcp
US 1.1.1.1:53 exercise.odoo.com udp
US 1.1.1.1:53 cdn-adn-https.mtgglobals.com udp
US 1.1.1.1:53 hybird.mtgglobals.com udp
US 34.173.148.21:443 exercise.odoo.com tcp
GB 18.165.227.37:443 cdn-adn-https.mtgglobals.com tcp
GB 18.172.153.46:443 hybird.mtgglobals.com tcp
US 1.1.1.1:53 srv11.e-droid.net udp
DE 82.165.61.18:443 srv11.e-droid.net tcp
GB 216.58.204.78:443 tcp
GB 216.58.201.98:443 tcp

Files

/product/framework/com.google.android.maps.jar

MD5 4899aca36d1ed747a447dcac0d101a62
SHA1 32e43edc0bf3e036683ea8639472e6cd31ab9929
SHA256 67a651acd867e046fb4463b31ea584c1468f7243a9d1e2efd34059e8ee2f130f
SHA512 50b23dd279a9efba566c6a6523c7537723c0cd6dd3e4871f1cbdb8d5bc355caa3ddea99452b1c8e5356802f812b3768066a9848b93d715bb8bdfa455b704285f

/data/data/exercise.apvxm/files/audience_network.dex

MD5 9b8164be4f0ffaedadc82125e5346c14
SHA1 c4bf7a6383958b493ed5c4dd6a19862d366fca4a
SHA256 8e632284c9b0180ef28e309b4b0f282ef608cfb9d9046df899d8bdac227ea9ce
SHA512 352b3e9ef70839d0850ff7ca4a1f19f3df546412ae5cac1243a80588e573fea6371edd4c408a2edf1b48d70a10a5cb579513d3cd38a4b5ccf4b7528dd28704a4

/data/data/exercise.apvxm/no_backup/com.google.InstanceId.properties

MD5 ae3f02332c1220dcd8b0aed9087a9a4d
SHA1 1cfd74d37d866c095134283ddbb8258940701787
SHA256 d043399342cdc5777f6280558fd6d86a3c66b77068c6cf4ee5c0eceae78b9ea9
SHA512 e0bd929e74ec53c1b917cae3867f1c185d56c5b6d7a33daadecbc5610500dbf4de54e4df14596d4ccde94f058c62212eeb5f8e90a30cf20733bb265ab3d4114e

/data/data/exercise.apvxm/no_backup/androidx.work.workdb-journal

MD5 d6bc10559043437ea7ca3f05085a3972
SHA1 a92a03d90069d43c10650c9f947af82749b0bc1b
SHA256 cb527b1690a98e94805d52bff187b896b3f8dd555693512b86112236b34d401a
SHA512 641d6b856e5eb4532c60629f5844dc8f044bab138364a4d2f572c95d633877112e4b5c2f1502a37ced7df5cd869eecbde7d1ef7394e201dfaf23e889af40da46

/data/data/exercise.apvxm/no_backup/androidx.work.workdb

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/exercise.apvxm/no_backup/androidx.work.workdb-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/exercise.apvxm/no_backup/androidx.work.workdb-wal

MD5 55cb0cd09dcfa81cb5575aa193141cff
SHA1 81b0d14ef6f853c6f1652c630ea35d5e1382f380
SHA256 71e6bbfb8433ecc7852d29c80c75dd6b392ffe3a6399b840335a807a1bd6b1a3
SHA512 98747632cdac86799626d713e6a7e2843c6008777fa355b6f9247fbc40d7e99654edc21efeb43402bb6b6f0777c4a7b855479b4d702707dc41eeb0a87e3b9659

/data/data/exercise.apvxm/no_backup/androidx.work.workdb-wal

MD5 299e06f65831a98434834608c85ec2bf
SHA1 00c98cda25c9e8ac285c5cb58ff9c624f72fb573
SHA256 9f7ed029cd00e9b09a85bf43d6293eea785a104541c0eef28f71b955b32987b2
SHA512 413e9b638b5ec59cee8057b057cd91120b7ee0733582de09370baf5816fd889849bfcc2848181fdc4623e1f3bcdd7dc398aabf6aba51c8790511c54b12dbae6d

/data/data/exercise.apvxm/files/PersistedInstallation4898351328871145612tmp

MD5 d91d01d6d4250f5945e4402e2a03c074
SHA1 4c5b6484d306b8693052c855dcb98f7fa3840108
SHA256 1164650e86dcae2d68014bc61a5aa7cb5f2d381283b69ac069cc1245df98f305
SHA512 3a0f04773d2db86e1d73776827d7cb511e71345f07fb33b258071e2112a38a9fd95fd0df22ed8aa19e19d602273635528c10cf793192ec03b1ae12a22c1a1baf

/data/data/exercise.apvxm/no_backup/androidx.work.workdb-wal

MD5 3acbdbe9573ca05ec2342c616e2602c4
SHA1 1ec6e8a5307efc9cf7c6f6e159ef7d314151cca8
SHA256 b26599b8b694511930dbec825657cde0cc0f68786895962f23d8940541bf7eb8
SHA512 8f56b84f0b3c9d5676f078f373c2e4797a9cb4d0864faedd659840eb499546cb3824696a52ef08f333f74d694f71569181ccb84aa9637d16a539620ccc1cee41

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-journal

MD5 d109410b334491ec4be7f53669aa4054
SHA1 db8545770c9f2edcd7e7622d7cf2bc05bf3c635d
SHA256 04808f9c8abf733b4f4532bd38d370c80603b3d46a7988eb825d6aefe2d90e2e
SHA512 12f7f94bc5356188449166f2d8de19a723f55fb61dd0678474263744b119857748fcbc237f3239b63260ab43240edffdb7d3edecf49a7b0613eacaadebf786dd

/data/data/exercise.apvxm/databases/google_app_measurement_local.db

MD5 eb52a90bb70b76e946b62f50b6f7fb85
SHA1 42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0
SHA256 48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4
SHA512 b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-journal

MD5 e983d5511549cb91b92845936dcb9368
SHA1 be8c07703bf4b98ca7ffbb790127af8e9a20e949
SHA256 85d15c09452846b82fb6a0f0b8cda8750d4ab01641bce4178cc7f12e5d1dd481
SHA512 33dfbd5f013d0313f529ab937acb8ebcc8446af3fb13b7f7c3f4aca90939a26d4181ca45fcc0f978c8da01ab2704cc94da6941b62694977b85b733a7b8f4c7ba

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-journal

MD5 a4e7b980b207c7cc1f1b13a00f0a5fc3
SHA1 c9a29b5f99fe9d23cb64b5250d659fb9bc7b0c5c
SHA256 5db9c8bce0502efb09dfb7f13ffc65c8bae2ff8d6f46cf60211159fb682bf79d
SHA512 3df81fdc843efbecaedb02538575b566d6faad922e5ae88b08e2c935f7a3a229119d431f54145dfc288a7fd0f6541f6050f31d9132051d03cc0d46958d78e4a4

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-journal

MD5 1f67fc5cb65e7b12f8aef26195945f6a
SHA1 57b0c887fa9d04cce4918d44193ac268555cbed9
SHA256 f8bb3dd43b848735f2579042550c2b4a54c028fe445c2772d04bc44ce6a2464b
SHA512 3f3f707cdebb7449f795d79981c7d3df715cea894075c1ce8e07b3de6908bc5d351fed800d7ab0782c1f4233eb75337c6b39a891df17228a47a24a0fdd1e8c57

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-journal

MD5 1daa1a0d04b3b340c59e0a55de6dadf2
SHA1 deba960d74fedd2c56b78b6afbc4ee9b9aab3f72
SHA256 dbb7a9dbb7b49557ef4ebcb4edbe0a52228035ad45ff661cacebe7c805925276
SHA512 35aefa50d9a5eae08a0db2cc57eb6be016734d4631bbd0e6f64d7642cfec6e0e23d582b5edfb746da15f7ad0cf6548cb71897e715791d4e9f58969f91d9c801c

/data/data/exercise.apvxm/databases/google_app_measurement_local.db-journal

MD5 5663190f9f5a6fe2143c7c7e2377ecb4
SHA1 fab04a95494c89a2833f8169bc0c315c64ee83dd
SHA256 7319dab212c0de3a5ae0123f45f28e64620f0c95c82111f79103a7ea7422131a
SHA512 60b47ed1e17350564607ce74343e82ab4b5dfc659d109a7955353d148a1b553f2eca68b3e3367b156499c357b82a203f4c9cfb248fb7b7cdcfadc93cb59d3cbd

/data/data/exercise.apvxm/databases/google_app_measurement_local.db

MD5 34d5c14a6aeaf52dd25203afb54c6c28
SHA1 9459014b34acd0c18e68318beafbdd6afe66ad56
SHA256 016df81d690efe3e19a2f5a4a5e5ec6eafe7660b87863d32dd46b1f9c80328ac
SHA512 44e66bce1c7bb2dc2923138e366e1108022852ff9966a21f16caef7eac573c710b9de3b3c798829fd4afe058cf97ff12240f5922e884dcd9018b272e0f3fbf67

/data/data/exercise.apvxm/files/PersistedInstallation497659363441801633tmp

MD5 0faca7965550e7219b070c6fc85ff603
SHA1 c81901c133fc05fb701e57998293a4c26d199550
SHA256 dfcd9a985800f62d5cbd85ec29224accd90dc073a3e0edd631fdc5afbd769961
SHA512 953bd76d651e2a2e7578ae53a30b49d53ad376e4fe87dcc30ad75b3cf2821f49638c29fe9dc24b4badbf41ade4cc9b13c1993c7e46aa950c05212289e3a57f66

/data/data/exercise.apvxm/databases/google_app_measurement_local.db

MD5 3746a75ebf5b265e9729b7469e84b644
SHA1 5bf73e97f0f56772c64857707f030f3a6542a0f4
SHA256 b4cb2efe62a68b229dcdfaf7ea61071a949f4ab3d6effe953de0fcb3ee42d31a
SHA512 644ac533dffd494554d56b8ec34e1ca30d60d09db762a8658001e73428541382e7344c2fce2d8f6247cdf9fe2adaa5ae981eba872bd2e3ea0e596ff5d5b89a57

/data/data/exercise.apvxm/databases/google_app_measurement_local.db

MD5 4ebbfd8c6e07401c9018c2a28f6f7f42
SHA1 a212705b360a3f4edc848e6e165322eab08b16d3
SHA256 cf2f00fb00fc6b6546a1962508ed0c0ffad6047a785458520b78e6cd11d7ef82
SHA512 169bee6e85b89460afbb2000450c9f5a836e71b415e870ad8c5c03a327396dbd73fad96856eb621a52d4b11466fa13e23d2e9bd7a02bded7cc9ffb92024a1dae

/data/data/exercise.apvxm/files/vinebre_ac.txt

MD5 012e99fe81e946070809e5b89cacb0c4
SHA1 ec52dfaf8515386bf16f3900a4d0006d4a12159d
SHA256 aa40107eb1dc5849e7f3439f544bca1ca89a4fa7d609670f9093e7dd4bc4dd42
SHA512 48d48d87c5fa604a00bd1c67f94bf00c659d3b9f49f72cbd187c784e36c01618d2d9c8241dca463a9a7a7f628a101fa71698596aaa209d2ff438885c2056c416

/data/data/exercise.apvxm/databases/google_app_measurement_local.db

MD5 70a2e4c5ee4aa103d5db06575c2baaa7
SHA1 01d55edfd60d8e093673c30717d70c1f1e51a58d
SHA256 08f409c60be72d2894cca61e6a339884ff4ca61706b363c99a8c375caf7b1ade
SHA512 df5def6dde6817c234856404fc8936d0a06708dc19cf0af17f198aaacda02eb314746f580f8e8d5194e7911187080dddbf185092af30675eb6b21234531b4f14

/data/data/exercise.apvxm/databases/google_app_measurement_local.db

MD5 8f8ab0b16255d99a72ea701c1aa2ab2c
SHA1 f2e47a913f1af9c3421650a9b8f1e091567c9a42
SHA256 3be8dbe42bd8f6cb972ec7e953665fa0bb7aa541f447a6b18ab678749b120489
SHA512 b141cdf2b6187d3a03515e03e4b69d1cbfb90532f8d40fd0ed40614b2b32fdf25fc253919685c7c0ecb9de8c336c5be479b56cc6c697267ba4ae62eeaaecc469

/data/data/exercise.apvxm/files/splash

MD5 4fc10ddcaa61564d2d696ec9f3f851e6
SHA1 ad95fb0044180b30aaedf1058024ffd42381ec90
SHA256 0b2688a0e49f84b3834bdda082c83c839e27f476a467146082d83d0e9bf56d11
SHA512 af3ed7c2f57546ac6b0f01cd5794da6913b1cf529a5355d8452cf1ab53359044729754e78d18560d0a9b89b3b7d5d21a905993535ea8090f59997ca3be11cd78

/data/data/exercise.apvxm/files/ico_share

MD5 1eb0236dc4c4cdebe0a5de5d899e1d40
SHA1 edc942eba8f74a7b9b65b733f676ef6e75cee9b7
SHA256 1b425d44f336a6ef354a7686b4e550a76dca7131e32915fa1b12a6854fe01f3c
SHA512 9c31aae0ec290d9c701bd7ac1f8cb759ed29ebb4447600134a93d68a166e324bdc892c811ee2481e5e82d345670e832e5fea640137a91512306a317f0d2a4221

/data/data/exercise.apvxm/files/ico_notif

MD5 ca07d17271ab46e8d0af293267e36cf6
SHA1 f247b8fa50a787ba943fdd62d8b57d45ac4fc6ff
SHA256 4c36633bbf8ab8f4de8f6aaedc1f2c0507dfec6bb94c76a1494ac0a30fb22876
SHA512 e33ca1e594f9da5e912e540a754ea846eaef9986a2f298a0d0ac2c8717933194a31dd21c4d075f1287166b9effcc753b06bdeda172be1ed2c65729ea78abf62d

/data/data/exercise.apvxm/databases/mbridge.msdk.db-journal

MD5 633e188e0ede12ec8d89b2b27c0f2c8a
SHA1 c149f57cdf7662f43f1f5db434d4449469c08e2e
SHA256 3173bd7d6e2e90f4c27ca0f42e8230634f2f08bd44a4d3ac3a99c36900e5d611
SHA512 df3f09c3700a36c7cd5bedaad49ad05de1d2bb7ef18943574db40c442025f6ebff9f37cb3cd6b02a2da261467cc9c3e641d2f944f9a9f674daceef253a9f1541

/data/data/exercise.apvxm/databases/mbridge.msdk.db

MD5 1aaca4ed40856b263d414db5858249a1
SHA1 1a44e24aea8cf2dc80a758d0d3c82b761c3425d4
SHA256 d22ae7dd8cdccab3bf3dcebdaeb53835bee82e4f4eb397a20e11cee219bc9f8c
SHA512 5782c34f060664b78b33a00bccf4d7946b37adc2b7e74114c0d30ee7f7f07d02cda574f3c7209b164deef846270408e1ce16492440fdb10771a7adc60a6b6cc8

/data/data/exercise.apvxm/databases/mbridge.msdk.db-journal

MD5 8215796cc0e166ad1b17a51398d436df
SHA1 ee2a47f0ba64d737d141575792f616389bd9192a
SHA256 f8dae0edfd08633d3acbc77b067ef7d757ee915a73005e8a8821e3e2518d2c70
SHA512 04c9506e29d26797b6f74df8554d515c855a6c87649c20997f443c80f1e224b1469e6276bb3e3743624e7a9aa81aa56db5b89423d98980353969153c0c5d2b71

/data/data/exercise.apvxm/databases/mbridge.msdk.db-journal

MD5 355753344a118f1cc274928f2703d5f9
SHA1 97afcd09f18015f6eaf40d4aa886381d846fe9ad
SHA256 4d93e75acb6737c5a5350d3e7bbc89ef3d4d2e7ec69387a00578966397e6b8b5
SHA512 e5efe5031be543756be21d0424d299c94c6947b89cf1b82af38cda7708b51610783b6f61f0cae89d4bbcb69caed7bcb89489f05a0b0524613080b97cd65f9ab4

/storage/emulated/0/Android/data/exercise.apvxm/files/mb/res/.mbridge700/mb/config/mbridge/67f86aa6ebf558650a28c9d4f344c688.tmp

MD5 bf01867f10d68df7fb862f463d1f706b
SHA1 e6fb26fe551fec5b0366dff17f18bb08ec53afa2
SHA256 c2aec3339ddb9917b463357d3c6e35488f1afd9d03a9598f8d10a50a9add7183
SHA512 9a7674d12a00fbe308debd6a00df277efca99107b38c024d1682eeb55dbcc1deb3ce96f5f41e307b62f055124e54561e0750e2c8786340a9034a3a3f217fc32a

/storage/emulated/0/Android/data/exercise.apvxm/files/mb/other/mraid_js.txt

MD5 d265d6c539839f8034106635f3bd9b00
SHA1 45e82ee9aa8dfe81987d806cf222eabb19c4dacb
SHA256 61779e5e9b63efdceca3492897e0b02063c9c8f87cd1335cc735a3e56a1dd2c4
SHA512 bb49eedf3dbab86a06f918d3f43fbd7f2287bd17638301595ae5e40f0a326ed7cf6dbb28698d753632196c1fdb110cb2ce152c64ca19175efef7ead80d90692e

/storage/emulated/0/Android/data/exercise.apvxm/files/mb/other/omsdk/om_js_content.txt

MD5 2710e879a7b0781d8ef8e5a5e6b35f9c
SHA1 1955e65b0f84b5c7cf118fd0b2ff694af9cfaa6c
SHA256 70bb8f51e8554a2dcf42e9e97205f0bab3623190ead9bdbeb4ec8c77cdc347f0
SHA512 f5dfd497920482fc1884188e2c595cd17d050c93935f87d02eaac54fbe5b666af27e8f5d5bcc2930cd2a03edf9727dbe418f8d0fc81629f8d5a47e2e7a964abe

/data/misc/profiles/cur/0/exercise.apvxm/primary.prof

MD5 33a5279364a6fc47323f472baaba97c0
SHA1 8f7cbf1c98b84497215f973568a917748139307c
SHA256 5b736796ab777ddb805c84f3ce5ab051b467ddcd62e2bd0505a48d9bc4a171dc
SHA512 cab16547246e5959133bff05fa3573a33e97624da06732427e6017f1fec16f34fbd6fe2b4e2bf05c91e1637112dd81e83f8b7ef3ce7eb2f7237347f74b14984c

/data/data/exercise.apvxm/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

MD5 6ea60748b7420cb645682cd3e4bb8579
SHA1 c6b7e8f9e6ca6d30f02b50bc9d01c286c679685b
SHA256 0b4efe5c256a504454bad2b9680ac5b877348b914ee26c13760b17c5b163ce7b
SHA512 68c25f1415453ebda706c2f218aedbb70a2288b2ef7f39446a82cfc0e02ea37486527574ca0e97816c4aec203c3b3733fad0db6267804ddcd92c6bb1f6029021

/data/data/exercise.apvxm/files/profileInstalled

MD5 97740e2c998f355d7531e0e46b16cdad
SHA1 fa5066f57fd6c6d78a4de15a7cf8f6401bfef102
SHA256 7f1cff1e45725e9f7d50f10b76992915f09b68d2b524f231960baea831d5e708
SHA512 40e6f9ca24939d402ce77c392ba4cac677d04b194b354af2a55d331dce89e470f34a0760065245ad15bcab045e9a75fee43221480be1e90eeb5f6292815bb6fa

/data/data/exercise.apvxm/databases/track_manager_monitor.db-journal

MD5 45dabdd630a25cf7248075bbd6c7cdbd
SHA1 9e7d8803c50180d2deec73f168533b3b68c59b3d
SHA256 d71b6c26174b5a40eb543e975f1a24f97e7f8b7a2da78ca33b581ae9d894b344
SHA512 9fdbae0b8eac83f469921fa34a96662fd516a9c0da1ca7c15a88d1e654f7bf2dd9829330fe031d1acaf8a8aa4685f644dfaea4d979ce7a25b6d13d3191634a5a

/data/data/exercise.apvxm/databases/track_manager_monitor.db

MD5 347397cd39a549cf91e7056438f630a5
SHA1 b5291379ff9921f38e2e147c3a21fc818859313a
SHA256 d38a48969a936bf1767bcb79e32d519adfb6f65f476efcc58448161c3e91fac8
SHA512 ccdec3b0b51951f697999b27217ac9c4539875388e6c31f4e9197ac42a106fc68d2da6d8e016c6c3acfe243ec23be07fe196676deb2016e5f949cafdda204533

/data/data/exercise.apvxm/databases/track_manager_monitor.db-journal

MD5 966cad573334ca734c360969e81cbe2b
SHA1 aaba7c6fced0092cdefa01e5674a1b72af4fe68e
SHA256 5c86c81e762ca7c1e79940568ffd3638836089ca371c6816f6dc7632beb2c0f5
SHA512 1857d7e2dfba67845198e6aafefda14e8b31557fc827744419cb948b6d4d6f7d3e78da0ecfd97d819c54e73028a0c06045c01629b229793fe6f468ea313cbb1e

/data/data/exercise.apvxm/databases/track_manager_monitor.db-journal

MD5 e976469a8a52e6ee4d2a0eea4f318efd
SHA1 64c51ae83a581267a31bb94356292a0ed75e3487
SHA256 0e3b9490ffd6903f3b685850fadf30260b6575bf549b84232e0e780c70752b06
SHA512 f1b0cd50f916fac89fa0cc896325eafcfb1e98eada4217192c4917122f43bb1781531c2c833da58da364d9b11e5f9432bfbccff3e5069ff22c412b8f06c1529e

/data/misc/profiles/cur/0/exercise.apvxm/primary.prof

MD5 ffbcd3b042309d6549a8e2929fd6e66c
SHA1 c91a9d632fa660851d2ad157a36a8281532f3adb
SHA256 aeb72eb0f12bfe8e6a604a590de180b94ef26b56b6f855bd46fb09bcaf984ea4
SHA512 2d23e4961933ac744e42b8948d72f84cd1b81c3e5c66d8ef1bf081ab5321cdfc38b13212ece87c1eb35fdaf363a603487003058d1b524dd0e5ddad8921c60f2d

/data/data/exercise.apvxm/files/oat/audience_network.dex.cur.prof

MD5 64e779642d0bb451adc4889da9724f54
SHA1 3a77ed540fdba10208ed000484e02e8d54f741b0
SHA256 d1714025b53ba94a311b5a045be1449e71283f185dd2981deae96bbfb28be6bc
SHA512 a122ff375c8b9ec05bfc55f8a50a6401c610aa02b6592ad16b606bc5286b908b87273751c61d2e6701d65a9a5d4f04a5e43d509544e4c028d8e20e6b2bc27f37