302088c9a29664668f1fa1f405ac44b680ce96e4c0b84f9e221454d6d6d75489

Analysis

max time kernel
3s
max time network
66s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
03-02-2025 16:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Obanai WA Lite_Blanco_ByObanaiModz.apk
Size

82.4MB
MD5

69e079af3091fd623325fda1c3e5c542
SHA1

8d101f9366c42ac7af1aaa0fb109d347e48bc2b0
SHA256

302088c9a29664668f1fa1f405ac44b680ce96e4c0b84f9e221454d6d6d75489
SHA512

66a198e016330e3fb2755693a2688db900dfb630f1369c60533a59c19a275bbf989ddd8990d54c6fe775bd4202277d4c4d9027c6a32948afe424693574edbad1
SSDEEP

1572864:E3HxD+UCTAL1v5FBuKsf8lgddE+GyFopgynPH2dhJepKJgqK32a:+hRs0vBuKblqm5y6OynPHOJemm

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.universe.messenger

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.universe.messenger

com.universe.messenger
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4282

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.universe.messenger/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.universe.messenger/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
18d3676cb616b13cff64992003f05d9c

SHA1
fb037f788c193814fab0edfec94390db784176a5

SHA256
4944057aa3e3df08e1d65548ac6f5f30c1abc329725666cb7534031910a4589f

SHA512
38f4f22720f4b526247f1e5c4ca87c8cbf405da918580762b12a3fd4fb475f73e7eb5ed9088ed0bf6f8ffa841b9e7f833832c2eb4f19f6333afec96127be2de4

Download Submit
/data/data/com.universe.messenger/databases/com.google.android.datatransport.events-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.universe.messenger/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
d31f8c195b9dd61422a77ac33a02e30d

SHA1
bbb103aad0d3d730de621d6bbf54731cc045bc5e

SHA256
ce5cd1a6430f41b9bf86df8db31b8aa076e21e179b69ae635132e9646bfb3b5a

SHA512
d588d2f72919c46ff7d7e6082790cb966f13b42c1bbdbac7bc7231ab2878eb28cc52954feffa54a050793364e3ebd585b2b4b777067255445f6b045205a63772

Download Submit
/data/data/com.universe.messenger/files/Logs/whatsapp.log

Filesize
1KB

MD5
2ba26cd024982c1f988c7b5dbd218475

SHA1
e740874c20abfa68739dfee589cbe2eacea9c616

SHA256
1d37e0bcb9f5d0f56257471f4ff3c606bf6e95935e434b2a91fd2c7d1dd1296b

SHA512
dda9fc8190c033b2cb2ec7b772dfe8663947439622871ed5d359a280a8ee44be52b0a7e68cacfa2f0de32a6001649605b43e4b0eae4fd54eb4cc998bf3399d24

Download Submit
/data/data/com.universe.messenger/files/PersistedInstallation4029294103821460496tmp

Filesize
90B

MD5
4936221d91ad19d30726ad4ef32ae375

SHA1
0925393720e4f832441d10749807f7706d73df56

SHA256
600b2d328052741b175b6dc8b8a3c930b2bb564c89ffed872e6949c66f8c8bf0

SHA512
cb20fbad8d89ec3cc224366e093fc1b53335a7ca8120019343f75e64eee9ad5ae13fe41549a4335503970aa657bb57566b26efa5fae2eaef7a591fba9f3896bd

Download Submit
/data/data/com.universe.messenger/files/extracted_pack_file.pack.tmp

Filesize
213KB

MD5
79a7b896132e3425306c22ee9245b1b3

SHA1
c2644a692a75b291253d84eac34186e627325fbb

SHA256
1dffc9205463e064a73076f5cc8ed4f688250c06709ac3d23324aa29dd70e81d

SHA512
6cefeea15c0a4086e13c3c6d09e646c473a301bcf25dbc2f8c091d2988d6fdc50d069ecb3c3cfa9908773c77ae6a8280581ccc8887c224f1c729e974097d411f

Download Submit