3b1a07700c934d3e596938bb222fc3b6b04ed0b978e3367bda8c720af6dec2e1

Analysis

max time kernel
45s
max time network
150s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
28/03/2025, 19:21

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

revenge-manager-1.2.0.apk
Size

16.2MB
MD5

ecbeaef8e28e1665b7c47fa25cd59137
SHA1

9ea16bd27a77d515a72768925a4dbbf629e65ead
SHA256

3b1a07700c934d3e596938bb222fc3b6b04ed0b978e3367bda8c720af6dec2e1
SHA512

20f2bb2c60664e5c42179e38850b7f1784f27800afd72db13074c61cd5c389df7962e177db43714e28f52434bbb2e8bb62d74f07a5d0b1f93974f3b86fe694b2
SSDEEP

196608:uStGJfGQvMDBVkxmD//1TE6vSODgvejBuRfG0a4F:u+0fGQvMDBVx/1TE6vkvS6PF

Score

4^/10

execution impact persistence

Malware Config

Signatures

Schedules tasks to execute at a specified time 1 TTPs 1 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

Scheduled Task/Job

T1603

description	ioc	Process
Framework service call	android.app.job.IJobScheduler.schedule	app.revenge.manager

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	app.revenge.manager

app.revenge.manager
1⤵
- Schedules tasks to execute at a specified time
- Uses Crypto APIs (Might try to encrypt user data)
PID:5063

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

T1603

Persistence

Scheduled Task/Job

T1603

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/app.revenge.manager/cache/image_cache/13bc18e1077a62816dab2ed6eebd22b2c91a42a786eda622fddd95880a770dd5.0.tmp

Filesize
919B

MD5
7261242dfaf8c655fdf9a3a844f71119

SHA1
2ddca9fd60319e66ac7cbcf7b9194d52a42db71e

SHA256
b481e6956da3f6d6a1db95c83eb3755b67877205f6bdc7844329f90faccd4586

SHA512
1c2dd69605d65216629bb81f2bf761e9cc402d126cf50730205f5183e9f7da11528aae60f03821a8b20ff55d698a5cb3689305063e2691dc278832506c9db186

Download Submit
/data/data/app.revenge.manager/cache/image_cache/13bc18e1077a62816dab2ed6eebd22b2c91a42a786eda622fddd95880a770dd5.1.tmp

Filesize
23KB

MD5
c9aaebd9948c45a69da36de9dee6eb95

SHA1
0ea6ceacce489ee5b519a2e7ab5422e0ef47e2d0

SHA256
dc6514213ea9aa5090894aaac503f86f96bac85744e0f3c9853818a926e8d4eb

SHA512
3c815788b129aeaa1650d4f66ca85bbcb47322c4acdd574f571d2a7b317f7a2eadd8808c82dce7e9fde3f540a2f74c155f7bf14485716a15b4e86325de87fd35

Download Submit
/data/data/app.revenge.manager/cache/image_cache/33f297b2dfc1e0bdd5cda71ffb3234d17a36e2f6bb81b017cceb8cd7991142de.0.tmp

Filesize
920B

MD5
8439ea2113ccf6be8f2023926c8fa294

SHA1
beaa1bccbceec53c338529b75204744702ffee61

SHA256
53ffba02091a70503d4f51e3ccbe7d98dc404862616d5b796cb8c4680711355c

SHA512
640eeb16aedcab356c42af5e2392993b3af4c182f6a3fadce82fe0b5ca1c73ee308f5cb2bce79e9d0ac56348da10bd8e79b27864a1f780e5138a650bd264ab4a

Download Submit
/data/data/app.revenge.manager/cache/image_cache/33f297b2dfc1e0bdd5cda71ffb3234d17a36e2f6bb81b017cceb8cd7991142de.1.tmp

Filesize
16KB

MD5
d129f08e55345aacae187ac4ba6b3772

SHA1
11ea531a8092dea8745214782549e425f83d96c6

SHA256
c05c275f8d64286d182cf6659b522e6ff3fdac3631ec14da4b26f6cee6a0a45c

SHA512
0bef41477bfe7da66dc64089f632b39f4f1939b63a59801640bd933dde28727607b84f9384141aae0e92463fa83124598787502d043ab1bc4d54f0918add348e

Download Submit
/data/data/app.revenge.manager/cache/image_cache/journal

Filesize
405B

MD5
6fe40013d0c674b216083cd4556e680d

SHA1
e4f4488c0539ccb684d5d820d0cbd3e6ae2dc180

SHA256
e98a0070487fb934c2641a60d7e9c1d614af2c51e3211c7c9b4ed10671ebf603

SHA512
578836ab396bcc1f0de1ba69837ac067d01835a685839bae0460a083ddccb2376049f911da1510e220c095930c41e4e288eeb05168c9c1a07a0dbb70e283c88e

Download Submit
/data/data/app.revenge.manager/cache/image_cache/journal.tmp

Filesize
31B

MD5
d6ac8c8db0504502d7f0e057a78c5ce3

SHA1
8f4cf91a262b24ec9c1a6e7c41fd6d16b6623bb4

SHA256
8f22a32cd8de58916041d1097976f2b9c80f7e9a18593d5a6b058bcaed17e22a

SHA512
100e74f0c65b51a17de6eeff96d5c38bd6d40e3c8ee00094fd906ba5794088fe1ad6f3a15be196480384cf01399ea26665a05471404f1eeebb0c82ae6fb104bb

Download Submit
/data/data/app.revenge.manager/files/profileInstalled

Filesize
24B

MD5
d9c1730ad3ac881aa9097efd9ca2d8f2

SHA1
61eb354ca14a8a59064bddf7ed2de95d03a89c06

SHA256
d97312b97b01e2fa941e3688316c23cb78b863a921c698e9329fc76b66f3e2e4

SHA512
88b287b7b65036716f51201d1709d5fa0286bcc50e11faac90bfc2b39d438437aa301a3400fe7a9897afe358376af32b47017d5f1c60c648e6bed496f3fecd90

Download Submit
/data/data/app.revenge.manager/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
dfbbcf2c0ea48ce2dd6bcbd733450810

SHA1
084b888c74bcaae3521d0bab0f01c3954a958c02

SHA256
2ed00e1490e1bc038414d64cfd913a673c191476be7cfbfb8a041798c0b710ea

SHA512
cb468a8702fe0bca4fd16e8c996cf40e36ec72d7dbd7afa01537b5367544c8226700e4202463f0afba88efc2ae0082e4eca04483cdc61a8d8278a855af9ef172

Download Submit
/data/data/app.revenge.manager/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/app.revenge.manager/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
61e2a92b5285e29ac327e5f7a354a64f

SHA1
03e1fa6d09b9e061c1b9d28f42cfda5ffeba665d

SHA256
119286c616ed5ce760fb2fc5d13266d8dba502ead60295b3a20aef3790f76678

SHA512
f1049d7689df3bc718d360a59bda4a71c1ac812ea797f929569bc5e1a3495514e17df88fff04c3012155064622bc225334fbd621ad375c4970d2b12c97f6e0c7

Download Submit
/data/data/app.revenge.manager/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/app.revenge.manager/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
81cc373684be064accc1c14c487db79a

SHA1
92e364645d57ae6b3bab1dec955bd72216891aa8

SHA256
e138697ad8428e94a3248909b94cc0d60c5fafd38e2723b3e93046c92ce6b593

SHA512
eaa842258feb188329b415acd4d0a41dbb020049542df66afc67bd76df2bbea564e88cffe38876310cc5a7c732b2ea1789985d7600a7e3a822fc71e03b0b597f

Download Submit
/data/data/app.revenge.manager/no_backup/androidx.work.workdb-wal

Filesize
116KB

MD5
b6e6bcd07c1c5a7af508310c1fd02985

SHA1
6cfc1def6a1e2075ceebb849a6da30ba288144cf

SHA256
75ce712df7462291b8ab3e601a163ece3a3ebbedd8c1e5d2eb38966014225463

SHA512
e120fe62754c1469333f7c2827f1d8faedaaab7291040ab68b6af4f3fa7accefec99472dc2c06ef5ad31170f4a6197a153cd60b15a3faa42a64a65963d37acea

Download Submit
/data/data/app.revenge.manager/no_backup/androidx.work.workdb-wal

Filesize
237KB

MD5
f4a1ff3eb450ca41863996dceaf48a40

SHA1
58548dab1ec568f61c5b4a4fea4eec7d6518682f

SHA256
25e01dd4c770f32472bc4c78bc3ce0b72b0643ee7bdda48699d470d050176842

SHA512
d3c8a035755a3458fecd59d681ffb6b7e32cfbe409cc5f58f9249534167f8f27035ca4eecc2ff8a46cc549cfa49db11ca5dcb05170c1cfb7a36060c156ce75ed

Download Submit
/data/misc/profiles/cur/0/app.revenge.manager/primary.prof

Filesize
6KB

MD5
50c2e000f794967991c1207484c2617c

SHA1
6610e97b755d874f45244628c81a26852b19b44e

SHA256
75f4775b1fbc6ce4a48df6e203df54740c5e01084949cef6f3e6752c08dab88a

SHA512
750f769671eddd5ebfdc2eb762e9a509eb05d500c4af47416cd581c015cbc0cd711abfd2cbec2a9e599ecfdd7359f5e1d814f4b25b8317d13e424ede6c2d499f

Download Submit
/data/misc/profiles/cur/0/app.revenge.manager/primary.prof

Filesize
13KB

MD5
b2cf49b4668cf670f886ecd11dce68e0

SHA1
71ece211ba218fb79b6af42e53233c318efc01e6

SHA256
31ad75a82fc31240b2a6981de1f0a722dd5070907cd1c24edd5c50976de19ff9

SHA512
3590a9098707d5664a6e112b1ef5c72befdbed15d401c7f0f8e739eb9f2e2cc97ee093b5f2f86fed0b6a4783fa06545dfbfb1953c96fdc4a2c452f1a5fc7aeab

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads