21310653d1745a48221fe9047bef6a9337230178fe42f10621d0f7a2cb1d5f41

Analysis

max time kernel
149s
max time network
151s
platform
android-11_x64
resource
android-x64-arm64-20240910-en
resource tags

arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
submitted
09/04/2025, 22:14

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

21310653d1745a48221fe9047bef6a9337230178fe42f10621d0f7a2cb1d5f41.apk
Size

3.5MB
MD5

2e475aa3f666a9d8db5d3115c7854353
SHA1

fa00c9230aa5f589a12927ed3a63fac99516a84b
SHA256

21310653d1745a48221fe9047bef6a9337230178fe42f10621d0f7a2cb1d5f41
SHA512

a8a685706f294b94dbb4a12f6a3ab49224b50960f8791c04fd9cd5455ba5be4fdd2d861779c74f869c6ffbafa4443bc233369df458095831e5b491fc4c7e6ea0
SSDEEP

98304:W9+oFv8T/N/GODie+PlbwevYHpBUpF5sr8Tgkbn:YFUrN9IjwHCnTdbn

Score

8^/10

banker collection credential_access defense_evasion discovery impact

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 8 IoCs

defense_evasion

System Information Discovery

T1426

ioc	Process
/system/bin/su	ru.jgkvbffy.ggkfqtbuz
/data/local/xbin/su	ru.jgkvbffy.ggkfqtbuz
/sbin/su	ru.jgkvbffy.ggkfqtbuz
/system/bin/failsafe/su	ru.jgkvbffy.ggkfqtbuz
/system/sd/xbin/su	ru.jgkvbffy.ggkfqtbuz
/data/local/su	ru.jgkvbffy.ggkfqtbuz
/data/local/bin/su	ru.jgkvbffy.ggkfqtbuz
/system/xbin/su	ru.jgkvbffy.ggkfqtbuz

Checks known Qemu pipes. 1 TTPs 2 IoCs

Checks for known pipes used by the Android emulator to communicate with the host.

defense_evasion

System Checks

T1633.001

ioc	Process
/dev/socket/qemud	ru.jgkvbffy.ggkfqtbuz
/dev/qemu_pipe	ru.jgkvbffy.ggkfqtbuz

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	ru.jgkvbffy.ggkfqtbuz

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	ru.jgkvbffy.ggkfqtbuz

Legitimate hosting services abused for malware hosting/C2 1 TTPs 20 IoCs

Web Service

T1102

flow	ioc
42	sites.google.com
46	sites.google.com
95	sites.google.com
32	sites.google.com
31	sites.google.com
33	sites.google.com
37	sites.google.com
41	sites.google.com
48	sites.google.com
49	sites.google.com
27	sites.google.com
28	sites.google.com
30	sites.google.com
38	sites.google.com
44	sites.google.com
45	sites.google.com
47	sites.google.com
29	sites.google.com
39	sites.google.com
40	sites.google.com

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	ru.jgkvbffy.ggkfqtbuz

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	ru.jgkvbffy.ggkfqtbuz

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Requests cell location 1 TTPs 1 IoCs

Uses Android APIs to to get current cell information.

collection discovery

Location Tracking

T1430

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getAllCellInfo	ru.jgkvbffy.ggkfqtbuz

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	ru.jgkvbffy.ggkfqtbuz

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	ru.jgkvbffy.ggkfqtbuz

ru.jgkvbffy.ggkfqtbuz
1⤵
- Checks if the Android device is rooted.
- Checks known Qemu pipes.
- Obtains sensitive information copied to the device clipboard
- Queries information about running processes on the device
- Queries information about active data network
- Queries the mobile country code (MCC)
- Requests cell location
- Checks CPU information
- Checks memory information
PID:4589

Network

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

MITRE ATT&CK Mobile v16

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

Location Tracking

T1430

Process Discovery

T1424

Software Discovery

T1418

Security Software Discovery

T1418.001

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Location Tracking

T1430

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/ru.jgkvbffy.ggkfqtbuz/databases/PackagesDB

Filesize
644KB

MD5
af04d114dd642349db1116c75382f418

SHA1
a5168b4f6eeeefe54b9e20b185f2b7b5b2dc731e

SHA256
04a7dfe21cebcf1e29729a38372608977da33b1b5364c5dda4a7ccc3e111894a

SHA512
b77aae6aac4fc8ac8bb6998a66c3f8a73cba8c6b35c4fecfdba9db292eab7af68a8262868596cb3f2fb8dc039833aaf633e01dfb66d7c577987206eaf74f50d5

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/databases/PackagesDB-journal

Filesize
512B

MD5
15333c0b3f55368f70d5b55e7042aa28

SHA1
e892c143e4fa139bd60ff7addf99c158f7bbed1e

SHA256
95b5134281e38973da5ec2514975749764de6265b3bba7e4d94af599b06c7b37

SHA512
c5bf7a25b37d0b0a97846069d6783fb95b3bf76e6c52c26212b413e29a13f88e10fd2f41890a7a9b57e262b72136204009349eec5f421d238d4dc2f32ae61a77

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/databases/PackagesDB-journal

Filesize
8KB

MD5
b1679b40347a0ae03063ebb4a21ca26a

SHA1
583c71cadce272161b591c729275774ef721a4b7

SHA256
436ca5af88d22f1785ff3104da6037a2ce7792d3f476c782fbb618e59028194b

SHA512
b638768fd281e75afe7d63ac0ca0c5a99cb05f46cceaba80ab2e62123e03cb213551823fb351b8e424b08ee508c726fdbe28d13ecf8a563af083cfffd16ca4cd

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/databases/PackagesDB-journal

Filesize
8KB

MD5
4466f3cd3415156f2cfb75e8d0b03ef1

SHA1
483631e2ae8a029cb273e5daf07af67d58396184

SHA256
f7f8c55b245eeda0880674496a5e1ba2b63df160eb1d93281332dc40c7f6e94d

SHA512
86146a8808da5d4af98aaa2d9d08cbf979ab5ff59dcdadb4b90c0bc2bdb4b8908980350cad4f051501c2f157feee5f764f5cf985dda7b5696bb8220745a31705

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/databases/PackagesDB-journal

Filesize
12KB

MD5
b37a59028348a74af1b0bd65b749d780

SHA1
ebfa737e912b5bd5b28dcdecee67d188beacbd8a

SHA256
131a322b972ed0cd6cb265031baeb4b66a95e145d2c0d990ef45c31f2b50ed2d

SHA512
2f78038b82f5630f84dc24085de434fd8a53a40a86f56fad70c03bc8d67c0abac4ceaef6fd5eb14aa79fffe8e17c334535673ff8ef2433d6014bed94aabaf19d

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/databases/PackagesDB-journal

Filesize
16KB

MD5
f4adffba5ebc7266e4da8b88d5aca89e

SHA1
0edb0824de1264091988905eb6f8ecb24307d128

SHA256
b87c193ee2988e1fa7cb76f61bd864f17d0f6c982ad08c0300c5d30a96ecde8a

SHA512
9ffcc950c4a7cb2a2c6dd245b5a0450c103cce5f733905f8be3965d64b9d907e15c33de61842fd1960af96318ae74ad610c9e7466ac42027c16d47ca5c5e9157

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/databases/PackagesDB-journal

Filesize
28KB

MD5
7897f4376da4ff7ed8e98b86d68e952d

SHA1
a7c0b6a0f1790950ef79d02149649f4c9cb25bf0

SHA256
c30c2576648751841ec99e26b579233fd9c987e2bd2a8ea6058a0dae23c8c35c

SHA512
b9b73445762856bdf2080caf6d21a2f24bc92d0f7617d0f0ac888cb077df8fe9b337b7438013ffae81799bdf90b6c9217b5b377388b814e6f55a7863025694e1

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/StartappAdInfoMetadata

Filesize
1KB

MD5
6670ce6183aefc414468eedba4de7f52

SHA1
750361ffd65ba287e46eb08d3a4e8b0f3ec90d91

SHA256
25e030c52269e938dea6a892a82f1f055ed9abdbdebbbd92858568f96f81669f

SHA512
1b15df8bd0411e76dbd2d7533bca39f12e592a3811e182270bb0c761d2a6d700e43e3dc220d40a05407ac8c5a4f2806964d53f579ccbd8546869febfe2fd2dfd

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/StartappAdsMetadata

Filesize
2KB

MD5
128503719bfdef6b09d4c8feb1a096d4

SHA1
8ca4eba243150f61a8660ed41c42510e16f36cb1

SHA256
db1874b1c410bf8b36c2715ddd5b274e67146a1b75c6393be20abb9dafd6c20b

SHA512
038e1cc07930281bbc2e6395baf41f9d463530496933a0f26bc1a37de4f3a1d75536ee1425a6f1580f8f32cda1e2e2fa4db754288d09351d81af5aafaa4aed61

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/StartappBannerMetadata

Filesize
719B

MD5
64837ec60a5def703db0471648bdabff

SHA1
f1eb4a00833351d6dd8040d9658faca109c0859f

SHA256
04e4c66980a46478b18296ce2620239907d7406143d003fd7ba7bb6382440ae3

SHA512
e856f892b0a8b4c645fb87d841e4faba64e2398589dbf25ee36f20e7df7a63e2e9464276232a625be4063659c924a005d8598fe03aa967c9d2a8d97b4ab68f34

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/StartappCacheMetadata

Filesize
785B

MD5
e9a968e4938a9bb9632799e2f10bbbbb

SHA1
8c9e1e04c6784d0f9d182081e6329897c957d166

SHA256
8afd711f027fad53c5c96bc0d79574983b6d661af90aebaddf0f1dd858d03f2d

SHA512
cf76a0a9051cade548200101d5e0837b1d1eacc441fed901641e7e9fa87ffa3304a98ba674c8d20ea30ff682076f45b60cdbf260e3dd2770b8f19ff2d393f133

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/StartappMetadata

Filesize
7KB

MD5
31a89b2bd3fbbef4249c03c0acc33ed6

SHA1
a4e9441110d569850cc02f7e0d26ab29c31dbb8c

SHA256
1911e5dc1c4e4544abb4a331168c4d4ef8a807ed9ca67e7061f82743852c590d

SHA512
1dccab76d7effb3c62fb2892f6c72d358cc32b52f77721587c695cafed5cf329f8f14ee012f713b7904c02eb0058d304d8f736d6ea9e397db6a365e0879c4101

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/StartappSplashMetadata

Filesize
1KB

MD5
c055dd7392e6ca13afafe86a675eee4b

SHA1
358df1894c743d611c1a9a0dbb2a393c3c11290a

SHA256
2dddd3094deda94d060fbca767c9b5b01d776629ecb1e442f22f68d4751339cc

SHA512
5d98e0275a37b5bcdaca1efae73d048b794c42cf479ff5b817ff14cac62c7270275fccac565c3e0447be2e497f8f9a7e9efadcc47807139e8a37968af23d149d

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/UnityAdsStorage-private-data.json

Filesize
41B

MD5
16d3e6eac0e79222a9b368edac765b34

SHA1
48d5e621fcdd84108f5750d6905180b622715b11

SHA256
3a518b70256a689906d6740062462e3124aad6e55c5aa47339a87a56e4933ee7

SHA512
d0aaacf86100135241426e2a0e9ba44414aa456cd708124e2f9c3a8037e008870cbcb506d316e4fe7cfe1d6dc3073393989a6f3c29f7cfabd6b0f65057afe747

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/UnityAdsStorage-private-data.json

Filesize
627B

MD5
f1b85f39db80d6528fcf56c6920118a7

SHA1
f309da54af62cff75b25d3cab75a32e743b1c91b

SHA256
ecea2a795a3016c5f077b5619dd010d2a85fc7427f9d10616594cc6559c7c8e0

SHA512
5a46d6c0b38276881ebb42049469f1f7494c9a3d195a0d31145cff48827ff9043c0b46ec5e552d84dc169f0198dfa6e985c9a96eb9e703b7199f02b997f29dcb

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/UnityAdsStorage-public-data.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/adc3/026ae9c9824b3e483fa6c71fa88f57ae27816141

Filesize
41B

MD5
be948aecc38887832616d20c3b40085c

SHA1
8efbcf98d000ac2a914842b26d3b9394b828a3cc

SHA256
28d865d25ec483005cbfdcb954f2b5e441b5a3caeb073a99a1dfdba5cf0ca350

SHA512
348dedccfd3b3775eb62333a56cd675329f40e2f918f2cf3f169ac0d05fdd47979532b1009aa690fd0f7e498118aa1c805e021c26ffd50ee0f4f258abdf7ec62

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/adc3/AppInfo

Filesize
68B

MD5
429059fdba597db89e491d6bc8d92b45

SHA1
2500f7f118b7d4c29521eab5030ef652d21c3630

SHA256
a9ecdd5568d8ab46101cec0af5a5e2d14a0d44859e442ff55e241383e293f557

SHA512
f9ffc61326c7acf79ca5c6e3405126ed2035cd422841392c8f4e485313095e13ef0220c275a756481dfb8542e75ad14e66311d6d039dc2aa51d799cd63de97c1

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/adc3/AppVersion

Filesize
26B

MD5
3c8beaf199f1a7e9ed2da990e358872f

SHA1
d7421e9c968cf93d22fe68faa04a423ca488a4c5

SHA256
8c6fecabe100de2b08e990ce1ac80c76810fd12205e9e8658ab7492d1f00fb6a

SHA512
6d8baba723ba17edcb36ca079cbdbd409fbac451ca797c686ffc36a43283c9cf58b17658c8e3d816ea209862c2dddaafeff5c5d5a92822a778e46f20bdb2576f

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/back_.png

Filesize
1KB

MD5
ebc06fd3d86c27a426932a83325eeffb

SHA1
461c990e677114de3baba2a33f0a60c0a10bb9d2

SHA256
ada010f03b82133ccddb4ac69a7c81a1d507121ef1d276c7c191bb55401c2230

SHA512
3b3c682dc3876f7c813bff1a38e53e0c20f6c776eeb8362a8a750b81d0a3132a207b01740a493c61a03261748399e020aec5fcb7354c723e4f5703efe5418b2b

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/back_dark.png

Filesize
1KB

MD5
355eb0af21063fefca005d93d6afa9c9

SHA1
f854e3d2f0c0470a54e55f31017f9c499bd3671d

SHA256
b50339f939827a8e5a918ee4ed1d8213e27f6d546a98313f90449b27a1ebc00d

SHA512
ffff59e303636383dccc1282dea4c13b8c46d9aea1d646d745f7d26607cfabc25aea8001af873942749129291abef5dc5a858e7360cbfc145f870b80689b34e9

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/browser_icon_dark.png

Filesize
1KB

MD5
cac9a26c27728066be7a285defc0df6c

SHA1
9931d42eea7663aaec4eb901bcf279b246c19e34

SHA256
9347cbd8e6e2af4d09759e55b7595474648619da07992d6485b9756ab4d8170d

SHA512
11a3abfc4558e6c887f1f809a3837ffe6f4c1702407db945319acacaa5e677f6b117c07ca676cda6438639a1ebc447a2993e0ff31be8ef797bd219700f508ba5

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/close_button.png

Filesize
2KB

MD5
2d858e8af5d9426fe061df5c82ffa6ff

SHA1
bc1b2eab876aa221b6449d11e482de24b777d58f

SHA256
73d875bdb982c50c666e30ba2b8ae2dceecc63cd0d5f8a35158edfe5f3303835

SHA512
aabaa75856cfc07bf65f3f2dae118e357cba83a45f0a900aa625f576de47c2753b0a00fb1913e45c1d743acc0f6e0100a4a6a326f402b0f4664ba181ad670c0c

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/empty_star.png

Filesize
895B

MD5
76ce13c6312eb334fd351e3b5cff4bf4

SHA1
203bd863b812c071ab3ae25bf4ab2f9c4d42942b

SHA256
f0a8e8d6b8bcb84e466f921dfb20a91fdd4e4b1777d9b0be6ad4d03d4a253af8

SHA512
d06ba34786090e3b027670a17910d2e35f48eb7bc639e6da1d08214534215797dadd1a56be44422b176801e5d1a1345cd2bf29e73acb6a49bc9a2f7670710783

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/filled_star.png

Filesize
753B

MD5
317f802aacfab6282b8f74f280e841c1

SHA1
3b746a76f6322e97fd6c09a43d03ac14631d93e1

SHA256
f37f9a17c20ca3068f4f9db08c262c62b7b86544532f612a78421bdee92f4196

SHA512
a714f902ede615507cef840dcc03a5eca183c21c82cc419a924587f38b6974f5aa45fcfcc2bac4d6cf82b81d1b6ad452540e0581751bfcad72e524c83757a301

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/forward_.png

Filesize
1KB

MD5
9ee047a6801bec9459a9dd5ec7068078

SHA1
1aaaffc208e2d86e53fc031e8413169850e65746

SHA256
9f63f6c9ed9d33f235c30508df34c3358b55cac8bfb4967fc3e15afc61a6fd12

SHA512
8245818df5ffe06c8f369c8d77479f9f2163d10dac36b0e37c834018b713dc8b063ec1de1862fe16a8c1a769b496652be880ddd48d6fcd24ad766a395bc3ff24

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/forward_dark.png

Filesize
1KB

MD5
12bfe20382337a84c0fc004a52b9ba9b

SHA1
ead15f7ef372c16f78060b8f8c5fc6e0ca6a96f9

SHA256
621fbcd864a7dceacffddb00a682148042732aeb675e22cd42b1a0937c6717a5

SHA512
7a346febc49154dd348be77f88c6e7ed5c7a531c2fed981f12c40e22a19e4e1a5c51fa766b3122898d97f05e1546a6f2a29b598b0ff441cc7de5e3c505aa33c4

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/half_star.png

Filesize
895B

MD5
a40e6a567b7aef329bda0ac200f7a23d

SHA1
2fa463649c7ba586b28670675a15e0d7a630c7e0

SHA256
ee0933e12dd4e302b1e18572d22f48861e8125e5d0201603e024d18ef5e38556

SHA512
5e77ca21445a09aa903ca08c10c1bcaf769d8273368b7981aacf1bbab08cefb7a521687e78d280828f46b625c99fde02050f5c914dd4d07fd742723f7713ee4f

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/logo.png

Filesize
2KB

MD5
45c24a8686a0978086c99f7039accc17

SHA1
c63ae2601322045390c7a4f230602b74ae18d2d8

SHA256
bc9c4aa36a0dd7efe16a8b3bca9172d970fd13d70d3e718aad17a78269079912

SHA512
d5861c64b9dc9139904c3bfc7da26fa6f3d9676a5b4203ad617c661d54d3716508fb02f282f5c204bf9d6a0c7162bbb565a44f2ceb96d825177065818b797727

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/pinapp.apk

Filesize
93KB

MD5
ba57f9fe62bbcf10348091b7d08ce123

SHA1
0fba82354a775094f68fb49bd8530f97f6db97cf

SHA256
1df6c43a03bf45cb91c83eb81d123877eb4f663b0693daf4ba590df900a01160

SHA512
d030cb078a399eb104e5780426e14efeaeeaff93c4710186d1622b64a5ec547e20e318f72ac3c6adc3baa4680a955a3e43fa5964dd87a0684b21902672854e69

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/shared_prefs_sdk_ad_prefs

Filesize
153B

MD5
65026ee778e1372d9f4aed742772e893

SHA1
5a5f1c821d7639424f3c75a44468ab5f7dd4e8cc

SHA256
15070f52136d5a8332f8d70f790bd7bb04cd6a99b386d40e0abedc40c42caa3c

SHA512
589c4a12c6b6ec1a1cca957da758aaa900e68a23b4bc2f42524b0e8dd34f6c5378541d9293eae1ae8d478bf5b5229ce4218c058fc3b399eb5756afeb05c68616

Download Submit
/data/user/0/ru.jgkvbffy.ggkfqtbuz/files/x_dark.png

Filesize
676B

MD5
1b759349f0bf3e55c51e2a2c2802b3cf

SHA1
5a608a093fa5f513d1ba52e8a9e01f693c47da98

SHA256
59d83bb6ebc5394c048273ea9e1516a2bc7a6f80212d53f81ee44cb1f9b65443

SHA512
3b39d22d0f8368dac2e36884b0316c5aba24180f51cb3a993fdefcdcfd5a36823d6c02c75863cd5a3bc0808223dcadf9934d548c433332bb9528f0eb8cecc0a6

Download Submit
/storage/emulated/0/Android/data/ru.jgkvbffy.ggkfqtbuz/cache/UnityAdsCache/UnityAdsTest.txt (deleted)

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/storage/emulated/0/Android/data/ru.jgkvbffy.ggkfqtbuz/cache/UnityAdsCache/UnityAdsWebApp.html (deleted)

Filesize
2.2MB

MD5
8ae099facbbe7c96b1a7de24dd3f8bcb

SHA1
9bf04713a81ef1c94e7e5f298d990d6fc944b09f

SHA256
2cd36c5a9f434b0d32f02cd3955c572151b8fa9c7517a25069ee4719a6511410

SHA512
9d6e4eb82494e76d4741b7743ea561f198d244bfa575a02c21a05d5f3649d5e2508b21719409e7900a06fc8b9dc93a6e556c67aa4a217007af7927873ca69a60

Download Submit
/storage/emulated/0/Android/data/ru.jgkvbffy.ggkfqtbuz/files/LuckyPatcher/AdsBlockList.txt (deleted)

Filesize
1KB

MD5
634ab5e3e49b830079f88825c88d7f80

SHA1
cabe4068d07d52c60f5b9f840fd887051748a3aa

SHA256
2824000ad496be920c29d0a78589c72935288b40ce44b44c5fae672fbfe87fe4

SHA512
ffc893fcad8d81f6ca272cf03737ab466eafd135599e6f6f20285d7f4c3454bedde4de5929dbb1be5010192747f5f11d86166509f24bfbf778f949762e47ef72

Download Submit
/storage/emulated/0/Android/data/ru.jgkvbffy.ggkfqtbuz/files/LuckyPatcher/AdsBlockList_user_edit.txt (deleted)

Filesize
29B

MD5
302f7b6d9a4ffeccdda9ef94184c8326

SHA1
d4038ca0629f57b7e5c4056e74a395e5598aa16a

SHA256
5b36134b695f0a9a32f570b08cc3ef74e0687a0d2aa228853bc0346f77bffebe

SHA512
299fda4936acf6479e22f9166d545976d5d99ba6fe7a5b7298cb336cf730eb7790524e4569fe64bc03c598c7e4117f163ddffc2e2889439f709c4d80ff665039

Download Submit
/storage/emulated/0/Android/data/ru.jgkvbffy.ggkfqtbuz/files/LuckyPatcher/Changes/changelog.txt

Filesize
44KB

MD5
7df5a520521c9463bd66b92a34dfdf39

SHA1
f82a7ce246446155459e9ebb591c88f16ab9d717

SHA256
542718c2251f3cb789c7996b719064c112f5d0cbd6bb921ae94c5ce3f036c600

SHA512
95a4b72b5a560bd1bf354d21fe5619af6fe688de18ac798d12f2dc9b2ba3485ea7f2d612981d0284bd7cafdf41e0b7f9ab4a395d7c45e608c0ce973b4a4a6d16

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v16

MITRE ATT&CK Mobile v16

Replay Monitor

Loading Replay Monitor...

Downloads