56dfd3efd8ec70ebabd4c3649163e928fa1201458c8a158dabe51d339c52dc61

Analysis

max time kernel
48s
max time network
132s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
22-11-2024 23:44

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

com-mod-calisteniapp-mod-apk-unlocked-pro-24-4-1-203.apk
Size

91.2MB
MD5

73a31eac05c9c17f035dc2de7917d823
SHA1

9426c793b32b7872a90108c662e97ab5e321696c
SHA256

56dfd3efd8ec70ebabd4c3649163e928fa1201458c8a158dabe51d339c52dc61
SHA512

4acfdab7cfc7716263fe15ee2b34b42766ab70c8d7cc9a2bb1ab00c22f3984201f1ca41680b596f4b4431e1ef101c6f9a8c737602b1d7b52a1dc0429a7618fbe
SSDEEP

1572864:tA4/XB446A2LBAOL0+nyCv+9ndDwKn4WL5W+gEH/yERrhmU5FE://XBcA2Bivn4W7gGqpU5FE

Score

8^/10

discovery evasion

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs
evasion

System Information Discovery
T1426

Processes:

me.inakitajes.calisteniapp

ioc process

/system/app/Superuser.apk me.inakitajes.calisteniapp
/system/xbin/su me.inakitajes.calisteniapp

ioc	process
/system/app/Superuser.apk	me.inakitajes.calisteniapp
/system/xbin/su	me.inakitajes.calisteniapp

Loads dropped Dex/Jar 1 TTPs 4 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

Processes:

me.inakitajes.calisteniapp

ioc	pid	process
/system_ext/framework/androidx.window.extensions.jar	4427	me.inakitajes.calisteniapp
/system_ext/framework/androidx.window.extensions.jar	4427	me.inakitajes.calisteniapp
/system_ext/framework/androidx.window.sidecar.jar	4427	me.inakitajes.calisteniapp
/system_ext/framework/androidx.window.sidecar.jar	4427	me.inakitajes.calisteniapp

Queries information about active data network 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

me.inakitajes.calisteniapp

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo me.inakitajes.calisteniapp
Checks the presence of a debugger
evasion
Listens for changes in the sensor environment (might be used to detect emulation) 1 TTPs 1 IoCs
evasion

User Evasion
T1628.002

Processes:

me.inakitajes.calisteniapp

description ioc process

Framework API call android.hardware.SensorManager.registerListener me.inakitajes.calisteniapp

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	me.inakitajes.calisteniapp

description	ioc	process
Framework API call	android.hardware.SensorManager.registerListener	me.inakitajes.calisteniapp

me.inakitajes.calisteniapp
1⤵
- Checks if the Android device is rooted.
- Loads dropped Dex/Jar
- Queries information about active data network
- Listens for changes in the sensor environment (might be used to detect emulation)
PID:4427

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Hide Artifacts

T1628

User Evasion

T1628.002

Credential Access

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/me.inakitajes.calisteniapp/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
b914b92bc779065401bce9335925b106

SHA1
19c8817c5b066d84d214e304ea2f7c81f245325c

SHA256
4e8600b0bc80585f7100769dd3f9ea7a74f33c10c60414702fb23fb87384964f

SHA512
ef5eb4e79e30b346d122670c992baf9c0a2c19802e1b2777d4349b1926c987cd71bba20bc1b40b2560f0e5b09bb36fd18d8e869cc4a47862a00fabb8aa2bb091

Download Submit
/data/data/me.inakitajes.calisteniapp/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
2c9d031a3f8fdabcb4ff71431028855e

SHA1
8114a85255475a1d7f47b7b194ed1df9a973d5a8

SHA256
f27ff358542eb0ad98a7b27524ba534ffd8f7c304773d52a550de6bd568fcf1f

SHA512
996bb90d484ef0c7f98409f8d4ed21eee812052fbbb04ef9284e54e43ed5506de535ee1a472c664915060e1dfaaba51093d26a08c61dcfb552ed671c26230a94

Download Submit
/data/data/me.inakitajes.calisteniapp/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
d3c455dfa541ce82d2a4cf599c2654f1

SHA1
bc5695528a40773e6163003fe7f0b8e32f6d1880

SHA256
2bd13243c0bd951d2e4da30d051409b9d164c2ce6eed60b67f638c28b7ef7bb4

SHA512
2f26f98471b36b4bcc671c374e9d01e20c11095871f060c5d940cbdefb6adca26caab512e077fccb5016e6c4f541ccae653c98e1079d589f33e01cd31f214467

Download Submit
/data/data/me.inakitajes.calisteniapp/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
79537ad7f665c47a3a44bc773ecd6330

SHA1
44fe3e61986f837485e3f71414c61ec88e1a4044

SHA256
b0bfd132f58d2c7abbe0b92b88415e641520894f5a0ae307ceb12456a3e4609d

SHA512
dbad6b4fcf116d3abe00bfe1b72f4d768f10054d8354ded4b2fddf12f22870f943ca6ffd679c4512db5e6c705476a06916e060c01e8ed981576c7fdb5a648bb8

Download Submit
/data/data/me.inakitajes.calisteniapp/files/.com.google.firebase.crashlytics.files.v2:me.inakitajes.calisteniapp/com.crashlytics.settings.json

Filesize
722B

MD5
3e1ef8efa7ab8b64c67c1fdeecaa5f17

SHA1
4cedce49ea24b4fdda236070a21d190b2049b622

SHA256
819bf81de0440c1efa7ceabf4f0362b76f37d583892e4154da8e137b1f5717af

SHA512
5c6ec09d192adbd11363e0e20eb9187921362c942bb65102ebf575386affb9c59b465df78a6f2d3580f7705508993c9f5f831a426916d08a6c9823709f151bc1

Download Submit
/data/data/me.inakitajes.calisteniapp/files/.com.google.firebase.crashlytics.files.v2:me.inakitajes.calisteniapp/open-sessions/6741179702EC0001114BCBDA773461E8/report

Filesize
831B

MD5
75f33650ccd60a89de9057d7e7e69f13

SHA1
6397d7ced43ea686eb7535c8a6aa963eb9ea5687

SHA256
e8aaad69726ce21171bc91b8b0dd4846338ae4be601ed2c5a2476bc05274452e

SHA512
f64067ae1c7dfbc33aa18bc477015b840e8efab5d25157ff2de8c55710bdb4291a091753fc39ef25020b3d8c8b39bf9472c9592444c97ad862b3fac9d3f3d003

Download Submit
/data/data/me.inakitajes.calisteniapp/files/.com.google.firebase.crashlytics.files.v2:me.inakitajes.calisteniapp/open-sessions/6741179702EC0001114BCBDA773461E8/userlog

Filesize
837B

MD5
f545030c3a0bba5bb7db5ef76609489c

SHA1
b7e2d4a43ea0bfe9777aad2477219ac4d92f1081

SHA256
5b6e62b02ee157ebaa85676f0bdf81ff5e120d9bf0f2e4c60f16fd4f204105c2

SHA512
bd1b72954c0d06fa35796f84f74918e454fbace76b9105b8e6b49ed723551be55a30af353431f017515e5bf5fdad5ab1874c555949e2fc0a059640aae546c606

Download Submit
/data/data/me.inakitajes.calisteniapp/files/.com.google.firebase.crashlytics.files.v2:me.inakitajes.calisteniapp/open-sessions/6741179702EC0001114BCBDA773461E8/userlog.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/me.inakitajes.calisteniapp/files/PersistedInstallation1185381552419957166tmp

Filesize
90B

MD5
4c9ac4135fcc010ee863429940338ccc

SHA1
02ff2cff5167b79cf10b87d21b65c5a0af524b8e

SHA256
c1f3c99858d80d9f851d310c563e06b2f8d4c1db908488af56cc073b66eb6fcc

SHA512
fffec4e78ac6b7a7ea82a94f0793fec08aea369335342ddf348f8721b2ceee1afe88108e7c69f327f2156858eb0e7c5c52f113f8af92d6c56ffa36377786e319

Download Submit
/data/data/me.inakitajes.calisteniapp/files/PersistedInstallation6854552785754460919tmp

Filesize
561B

MD5
5b468c8690eba177fc11c09d0bfcbe9e

SHA1
5521f01c82eb975d699a26f2ade4cd875332991e

SHA256
37ccfabac98f5f568588655d57bda3c45f04056305cd4e70c5321331e5a7f112

SHA512
ba7aecba665be3b9e92e4cfc0a47772d99965c6ddbb1a08992f725ff45cdec7067b9b8097424a5b0fee2f192ea6d8c9bab7d0925d289ab69aaedf01a0d00c974

Download Submit
/data/data/me.inakitajes.calisteniapp/files/datastore/firebase_session_settings.preferences_pb.tmp

Filesize
33B

MD5
35b51faac8b5af3886e70bb5a885dab1

SHA1
e6cb282da46cd4bf113e25c8573268578dcd11b6

SHA256
af5b3362ec35985974c6b73eeba53e5063861f2491252d61d8cd42168aa5ed6b

SHA512
6ad5e9766cc03a4436e1440b9e47c44da6c6440a3c94b1cc988f8c5680043cde6f7b7e02b2b4c71b25df4209c39ed099fb65fdde02a9f09464609a1abe6af8fa

Download Submit
/data/data/me.inakitajes.calisteniapp/files/datastore/firebase_session_settings.preferences_pb.tmp

Filesize
75B

MD5
944e6a5a08cb971370c65c06061f0ab4

SHA1
84d47725cc29bf167b782c702575bce4bf2ecc5b

SHA256
ba8f4af0e35f93cc15649f4c51969f5279421fc12deeafaddec5e5c48aa58dab

SHA512
bdc404233927a6a99160492d0b3e2cf00776d51b33612b8c9ecba395747b3572cf1790269fb199915aafe84c546d30e3259833c9d00af8c412823396882ca783

Download Submit
/data/data/me.inakitajes.calisteniapp/files/datastore/firebase_session_settings.preferences_pb.tmp

Filesize
121B

MD5
ffcbf87665a36fc21782400bd0537e79

SHA1
3dbfbdbfdcde953317b089f9a9fa0bbe50c698ee

SHA256
a21d3bf2cca0951e9e7b3fed43cafe9f89a4cf9d844c82279b260852d0ee473d

SHA512
7f98ac150c422eb4f1126d86501d0435817ceaa7eb5549e4d21a295d57be3d3fed4388cda782c084130c4ac8d57a4f225139a2e42e8a12b34cc1679140d16b57

Download Submit
/data/data/me.inakitajes.calisteniapp/files/datastore/firebase_session_settings.preferences_pb.tmp

Filesize
163B

MD5
dcf7d6c1cfd5e7b56074e3001577c78b

SHA1
b8eba89aee9f6688ecda6675ef8ff4998da0b141

SHA256
ba0830617929c78abca9391c2059f89c78049911f502ef5525d39341e4da2b91

SHA512
42d75be824d69de23d2e8605d60c3608db20ed5c059f5b67c63ca2845484c67150aea88a3aae36aae12a4ea266fb6b469d09f765bbcd444350d836ab83f7695d

Download Submit
/data/data/me.inakitajes.calisteniapp/files/datastore/firebase_session_settings.preferences_pb.tmp

Filesize
212B

MD5
ad6dab8870e487336ba5e7c141d3b14b

SHA1
b33a44ff3c1de9027044f6eff6ac61902bad9919

SHA256
88596ed302f4271db0bbfb544ca4a34ed5127fdeccb8f0793ff06e3d40610b45

SHA512
3a65112dc58fa782323e3e1072d74838cb6a7edf77b60e01aad14545007e576398f2e604ee2809cfa7e40bc800914a9db4549aa6c198d799403af1f0b331811e

Download Submit
/data/data/me.inakitajes.calisteniapp/files/default.realm

Filesize
16KB

MD5
247827cf189576a04acea86832a7c0b3

SHA1
3906919f9e9952f8e357aa556f0ddd6a4029e06c

SHA256
b48dff0aff2702a5c69d5d05efebac6efa553b89616fa94de4518aa481cf4a8b

SHA512
5faf4145065c681bfc3f18681e9e8f3de29119486583561a3646a50bce703614bb0032df66c4948c90251b8fb3896a63373db7fa9148eafcc087e85a7fb586de

Download Submit
/data/data/me.inakitajes.calisteniapp/files/default.realm

Filesize
3.0MB

MD5
2470ddb234be7c169b98334aaa1f8421

SHA1
69dfa2ae1d82fe0a3fe48d248cf5890a9bbb635a

SHA256
2f3b86475756499b4e134be7e6240dd96bc42e28b49e5f630c3d08415518a74c

SHA512
7363bde17382a9a0026065834b955aa3bc511e7878b1f9afd7a763455905bbf2d70f522427be614eab2c9f29a615dda1bf5d9188dbc17766c8249ccb5663ee68

Download Submit
/data/data/me.inakitajes.calisteniapp/files/default.realm.lock

Filesize
1KB

MD5
c3e4eefedd55eae4334456daa4aa0ad7

SHA1
ba9abe2d4d40bbd94530564b6eb178ec02a47204

SHA256
7081ba3d8887be22551f56b5f50da675bda7dd02f40e9fcb150ac84fccbe387f

SHA512
a302516427a81e59fe955f4316fd56b8e5207542b1abdd7eb3fc2e9dbc669849dce90d12d9160b59d45af233e63e2156f3a3f1e7807b7ae1b1225a94d472cea3

Download Submit
/data/data/me.inakitajes.calisteniapp/files/frc_1:361700109196:android:cf84160a8754ce68_firebase_defaults.json

Filesize
850B

MD5
6d221e00b3aac49eb68a088f26d7ad31

SHA1
282c4bd5c7f59b40fdf4ec9a60f039a1e6617cb8

SHA256
17f276d6f989fca7b3a56852aa58682316b07ff7b3b449ff64c707806f828770

SHA512
95a2b9c26e1385bf716df4ea17415392396700999217bab6cdfedd1a3ec6a7eae7727ceb98bf99f8567b01b8029e9c8f3ac3f22f6aa05ed5160b0be4c0054d94

Download Submit
/data/data/me.inakitajes.calisteniapp/files/frc_1:361700109196:android:cf84160a8754ce68_firebase_fetch.json

Filesize
1KB

MD5
8edffbc178a93356adb096641d99b724

SHA1
70a40461b7dccf2ee5d6184bcc325d63f3fffa7a

SHA256
009c2e04f7ca3ba72d698c09b691c99b8e70db706a347ecfe1f564d4f1cb6001

SHA512
02dea379ae95212706d28683c436aae59c9c4651ca8077566325ed2e1164e1e03791f0430d8cd4fad9c8b773c3de764c6e6ddceac6795515240f2d424c344977

Download Submit
/data/data/me.inakitajes.calisteniapp/files/profileInstalled

Filesize
24B

MD5
2fee2cae693d331645b0fa3cbf7722f7

SHA1
9144a33cd07108cf4ac67c01a2a2bcef71d4eb7f

SHA256
690199cd9220d1c11c07fec0cfadf05c75ba39c389b2bae61a2299f4c9e24e21

SHA512
7431d638e924b3a04754fee5e5ec36389846b030ecb1981ffea5605e152021a61cfab69015862c7e0726a22ed7ceb5ad4bfc2c38b2c012c3134edfa040d5208a

Download Submit
/data/data/me.inakitajes.calisteniapp/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
bce8d6d037989622c9aa3f2c5ec46bcc

SHA1
a99320d62cbcaa5c9bfab1ce32013a33d1bd58bd

SHA256
100350c0a6f69c69de494bc48f992f81f663119ca70bf9eba2a23aab084816ff

SHA512
c50c095924e1f557a2666c67f0724525e5ef714e3a5bb8add585fa2f626596bf054c9e3ed666d2ba34638ed3757f0562b16cbb4a8650c235bfcfe7c1ccd8dafe

Download Submit
/data/misc/profiles/cur/0/me.inakitajes.calisteniapp/primary.prof

Filesize
2KB

MD5
a8becee610cdc1ab0908538e5803d0b3

SHA1
1dbea3272faed09029d68aa4c1b23bf1ca69d761

SHA256
66161e38fbca133e77eab80b08aad3742dff788105d0b8c106e838756fe0e2d2

SHA512
dd200a31c2bf0cdfb5ba0fe1bd87c3eb25101ed1e98cea647b90472e934dd396cdd5d5f72c73e867b65e58bc18650c7fde374c21069071bf696080877cbea55d

Download Submit
/data/misc/profiles/cur/0/me.inakitajes.calisteniapp/primary.prof

Filesize
20KB

MD5
612038e127939787e8317acf4c27873d

SHA1
7685b934297c3cfd04483fa78087c91126be7e65

SHA256
129572efcfde32e25acf1541c8b409caae73d0f3ab91ed275b7c0775b048dab8

SHA512
01085da8497091cb86d621ba06eb24e4cc435f810906e432e86a2b9606065432a69dcb2c27c3e6a335e4e291edb3c8343cee31f23f79a02118daf7f257409b30

Download Submit
/system_ext/framework/androidx.window.extensions.jar

Filesize
123KB

MD5
3056e1bdb7d4e19789d0319eff484bd0

SHA1
6791ae47aa9466fe0bca27ad6643f846853bbee4

SHA256
8e6331a07c9f2ac139214c527dcaff2c82d126bbe7bd3420cdc36d6a8c9204b0

SHA512
c790980fd68d9f89e32743bc28846807d5e5947c555f494de47714dec5cbd0c08d81c3260fa463759d1b17a953af3c44ec30b14fb08bf6b29db3837346c9f658

Download Submit
/system_ext/framework/androidx.window.sidecar.jar

Filesize
25KB

MD5
29469324e59dfcc052f24b5af4e7b2c4

SHA1
10c1e17ac6f598037bb51baa07945663645de4eb

SHA256
9195dc6a1c75a841384050240dfc972e48178964993fba6619788625f4b40d1a

SHA512
5e27c2b1431369a248298f2f749136a575005584f9999f2a4c204a0c47adce2e33c8df9f058bdafa1bde1c99e46d175560cedfcddcd8581718ed1d9973c37cc2

Download Submit