56d02524b2ee7df8e4bb5070ab2b480385518d16b8acbbdb0265ee3f1d8e1024

Analysis

max time kernel
149s
max time network
151s
platform
android-11_x64
resource
android-x64-arm64-20240910-en
resource tags

arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
submitted
11/04/2025, 22:08

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

56d02524b2ee7df8e4bb5070ab2b480385518d16b8acbbdb0265ee3f1d8e1024.apk
Size

3.5MB
MD5

678b025a29837ea87e3921d8b846c531
SHA1

3c559ad7f1884c6436043215f9c3498324fa4fa8
SHA256

56d02524b2ee7df8e4bb5070ab2b480385518d16b8acbbdb0265ee3f1d8e1024
SHA512

7e912619068c322d749fa7024bea4c463a679793201e042b1e02d247abbc0e606289e80e626cc098603120ed33243805e1de7fffa1380267172a9a9981b923c1
SSDEEP

98304:CEHjl+YWTgeoc81GWXYQ7eqguHpBUpF5sr8Tgkbx:7HRMglJ1BHCnTdbx

Score

8^/10

banker collection credential_access defense_evasion discovery impact

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 8 IoCs

defense_evasion

System Information Discovery

T1426

ioc	Process
/data/local/su	ru.sobgqfur.fjgfgkcxl
/data/local/bin/su	ru.sobgqfur.fjgfgkcxl
/data/local/xbin/su	ru.sobgqfur.fjgfgkcxl
/sbin/su	ru.sobgqfur.fjgfgkcxl
/system/bin/failsafe/su	ru.sobgqfur.fjgfgkcxl
/system/sd/xbin/su	ru.sobgqfur.fjgfgkcxl
/system/xbin/su	ru.sobgqfur.fjgfgkcxl
/system/bin/su	ru.sobgqfur.fjgfgkcxl

Checks Android system properties for emulator presence. 1 TTPs 1 IoCs

defense_evasion

System Checks

T1633.001

description	ioc	Process
Accessed system property	key: ro.bootmode	ru.sobgqfur.fjgfgkcxl

Checks known Qemu pipes. 1 TTPs 2 IoCs

Checks for known pipes used by the Android emulator to communicate with the host.

defense_evasion

System Checks

T1633.001

ioc	Process
/dev/socket/qemud	ru.sobgqfur.fjgfgkcxl
/dev/qemu_pipe	ru.sobgqfur.fjgfgkcxl

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	ru.sobgqfur.fjgfgkcxl

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	ru.sobgqfur.fjgfgkcxl

Legitimate hosting services abused for malware hosting/C2 1 TTPs 20 IoCs

Web Service

T1102

flow	ioc
26	sites.google.com
27	sites.google.com
35	sites.google.com
37	sites.google.com
38	sites.google.com
42	sites.google.com
28	sites.google.com
41	sites.google.com
43	sites.google.com
48	sites.google.com
49	sites.google.com
29	sites.google.com
30	sites.google.com
31	sites.google.com
32	sites.google.com
40	sites.google.com
45	sites.google.com
69	sites.google.com
39	sites.google.com
46	sites.google.com

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	ru.sobgqfur.fjgfgkcxl

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	ru.sobgqfur.fjgfgkcxl

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Requests cell location 1 TTPs 1 IoCs

Uses Android APIs to to get current cell information.

collection discovery

Location Tracking

T1430

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getAllCellInfo	ru.sobgqfur.fjgfgkcxl

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	ru.sobgqfur.fjgfgkcxl

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	ru.sobgqfur.fjgfgkcxl

ru.sobgqfur.fjgfgkcxl
1⤵
- Checks if the Android device is rooted.
- Checks Android system properties for emulator presence.
- Checks known Qemu pipes.
- Obtains sensitive information copied to the device clipboard
- Queries information about running processes on the device
- Queries information about active data network
- Queries the mobile country code (MCC)
- Requests cell location
- Checks CPU information
- Checks memory information
PID:4611

Network

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

MITRE ATT&CK Mobile v16

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

Location Tracking

T1430

Process Discovery

T1424

Software Discovery

T1418

Security Software Discovery

T1418.001

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Location Tracking

T1430

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/ru.sobgqfur.fjgfgkcxl/databases/PackagesDB

Filesize
644KB

MD5
98fb00f46c767f6378f4400c6c6dc1a6

SHA1
619907562dcaf9e879b2b260a6a3a4500fd71583

SHA256
4491c2bdcce124950360398bc73f8240240595963ae631c1593eca9177874f57

SHA512
46dd818454418ab169d66a30b957cc826a706e2f5f0ac5f0fd0bf87c80dba90164ab4ce91524d7c0e2e1b0a66d64a4647e62e250601b584fe4e29da74455c456

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/databases/PackagesDB-journal

Filesize
512B

MD5
8f31093f1229f72ed63d24a0c0f00cdf

SHA1
8ae66d284404b62c06518b61378a354cb7804faa

SHA256
6c4122c96b8a334092517c03c67b5bbe183e21a55ea404383a0a0672aa2b0349

SHA512
3cbe7311d4d57a6258a471bd0236d5898ac8bcc15f64ff98f11485c99978901acc7c1d2b601b572cf332bb8c9605ad464f191d5a33cc0e602b8746c3c0632c16

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/databases/PackagesDB-journal

Filesize
8KB

MD5
5ccd8735915c5a62b1506212a640d98e

SHA1
424ea3c7a703dcf677ee0c94394af377c7374d86

SHA256
7d15fbdbbb9ad8599f14fd4f7253da83ba815b2581c172db661976115ff74ad1

SHA512
b36f710441f0ed56b004616cdf1a6d69662f2452e863ac3ccc527060670db6da983d7351894abd8eb0558caae8ef54c9fa5033145c50158dfa71fb50fc7c70fb

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/databases/PackagesDB-journal

Filesize
8KB

MD5
5750e8bd4e436c7b8ba630a25e66a6ef

SHA1
3123fe289e14a4ad3b638d038cf2bb7c982d25da

SHA256
367114f950735ed5c0ca029a2ad040fb9352898021801991f8216377dbc0156f

SHA512
d04722f43513b2398a424283d713d02059b28fb64745fd268bb41d75c2ed92acd88f8fddbe0981e55df80f407f21830493dfb5e92d0a416eab72659d107dc542

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/databases/PackagesDB-journal

Filesize
12KB

MD5
ba9b871b714a2fcbf5c12ea776be0329

SHA1
e52ecdd02f00d955b0f4e14823db655c08bfb169

SHA256
d28af6662d68f9683f28d6c810689cbd8456c79230156de7536f60b24672c9f9

SHA512
e08568ad039b10cc5cb6b70275e8e0c3e0c76fc939a4eb5b5761f7e923e219a398ed40196198e4fc987d082c8de1b2faf159859e088fe0ff73a4e03f8fc0b4d6

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/databases/PackagesDB-journal

Filesize
16KB

MD5
6e3fea7b1f00e18b37e443be2f78d4cf

SHA1
6c4c7a074931d6fa4107042e915eab3291f12f15

SHA256
5a06370efb274a37fe02daa4bc709ca408ae6dc35b90aa36efeadf61b1f7a115

SHA512
19059aeb8cbe262257e86335d34205839c184ba1ee624f5230e1c49757cd580be58b585a4cb9437381b7fa4707340a349ba4241e18fca676a8167b14c4feeab2

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/databases/PackagesDB-journal

Filesize
28KB

MD5
221b8e394187f89b1ba8a57ff714c34c

SHA1
e82ea4c358431baef3a82aae393e7320c389071f

SHA256
39d5aa613d9ec5ea3b5f392d870b0d8cf71e4662081c3611109ff3bbfe97a01d

SHA512
fee73ce7ac63297c2d50b19d774d9dd38980ae5acfbe62a849863ec16aa27901854635c80067ceba9ff1dcefdcdb0b538ed56255588427c93009dca14744c756

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/StartappAdInfoMetadata

Filesize
1KB

MD5
163c5b61f008b12f9b26fda113136482

SHA1
1d375266dd4f3f66ff352f669799683513dc6d2f

SHA256
63d177c5c8dcbb7bb23dd738a1d40d8a3e2a62ad50ce4537c1b445b55c3d3aba

SHA512
86de902c1f43acd7be2ccba6db0d6a080a08ccf94c8f5331800b34e4af41ab69a6ca249693674dd6431eecd49708514a968ff5eb87fc173bce5fad148451d317

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/StartappAdsMetadata

Filesize
2KB

MD5
128503719bfdef6b09d4c8feb1a096d4

SHA1
8ca4eba243150f61a8660ed41c42510e16f36cb1

SHA256
db1874b1c410bf8b36c2715ddd5b274e67146a1b75c6393be20abb9dafd6c20b

SHA512
038e1cc07930281bbc2e6395baf41f9d463530496933a0f26bc1a37de4f3a1d75536ee1425a6f1580f8f32cda1e2e2fa4db754288d09351d81af5aafaa4aed61

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/StartappBannerMetadata

Filesize
719B

MD5
64837ec60a5def703db0471648bdabff

SHA1
f1eb4a00833351d6dd8040d9658faca109c0859f

SHA256
04e4c66980a46478b18296ce2620239907d7406143d003fd7ba7bb6382440ae3

SHA512
e856f892b0a8b4c645fb87d841e4faba64e2398589dbf25ee36f20e7df7a63e2e9464276232a625be4063659c924a005d8598fe03aa967c9d2a8d97b4ab68f34

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/StartappCacheMetadata

Filesize
785B

MD5
e9a968e4938a9bb9632799e2f10bbbbb

SHA1
8c9e1e04c6784d0f9d182081e6329897c957d166

SHA256
8afd711f027fad53c5c96bc0d79574983b6d661af90aebaddf0f1dd858d03f2d

SHA512
cf76a0a9051cade548200101d5e0837b1d1eacc441fed901641e7e9fa87ffa3304a98ba674c8d20ea30ff682076f45b60cdbf260e3dd2770b8f19ff2d393f133

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/StartappMetadata

Filesize
7KB

MD5
40b9102749f7107b18665c6374e9e5fc

SHA1
9e8196bf3dd83f08b49b539d6ef6153d9c6af46e

SHA256
87af1cbec2ae68a0e74c9963436084a4400c9afd370a2463608cb58853d6c3a0

SHA512
5e4376a2f122a69871f5f37256ff439c9ec6f94a0f9dfe1da867b01bcb8971b385bbaa42220f9a275aa8037d995b86c61ed589b19b6aa74c41ce1f7be53a90b7

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/StartappSplashMetadata

Filesize
1KB

MD5
f9b0d48e74a11e12fd8ceb24908cf50c

SHA1
61836be808bd36d268a5da599bfd1cc4e6e9c743

SHA256
b52140b29a3685cbf8d5352db7e30daf71d9eafc7bf7088b9c143475ecdc31ad

SHA512
6335a8360e123cdb89129e21d40c11a6419a044ae2ad0c2407fb3feac7cb5aa006a6b644fe6a496b3e56a824b42b96c1dc89b0cdbfdb30bf80579f26e5f0dda9

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/UnityAdsStorage-private-data.json

Filesize
41B

MD5
16d3e6eac0e79222a9b368edac765b34

SHA1
48d5e621fcdd84108f5750d6905180b622715b11

SHA256
3a518b70256a689906d6740062462e3124aad6e55c5aa47339a87a56e4933ee7

SHA512
d0aaacf86100135241426e2a0e9ba44414aa456cd708124e2f9c3a8037e008870cbcb506d316e4fe7cfe1d6dc3073393989a6f3c29f7cfabd6b0f65057afe747

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/UnityAdsStorage-private-data.json

Filesize
627B

MD5
6dfcb8137c540a7816362fea039dbb2f

SHA1
27623c0c18ec101f8ebd9b06eef353ac847083ae

SHA256
0be0c51bf18d5039f4a8e2b37b953fcd2988152b9605cec05593e6ac009d648d

SHA512
271a7fb7b2331f37f66405cd0f81ca95b777a392b382f7296a0a0630a2ee183185aa341aacacd9dc665345d0848d468e8046db2fde94dc062b76420635328e93

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/UnityAdsStorage-public-data.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/adc3/026ae9c9824b3e483fa6c71fa88f57ae27816141

Filesize
41B

MD5
be948aecc38887832616d20c3b40085c

SHA1
8efbcf98d000ac2a914842b26d3b9394b828a3cc

SHA256
28d865d25ec483005cbfdcb954f2b5e441b5a3caeb073a99a1dfdba5cf0ca350

SHA512
348dedccfd3b3775eb62333a56cd675329f40e2f918f2cf3f169ac0d05fdd47979532b1009aa690fd0f7e498118aa1c805e021c26ffd50ee0f4f258abdf7ec62

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/adc3/AppInfo

Filesize
68B

MD5
429059fdba597db89e491d6bc8d92b45

SHA1
2500f7f118b7d4c29521eab5030ef652d21c3630

SHA256
a9ecdd5568d8ab46101cec0af5a5e2d14a0d44859e442ff55e241383e293f557

SHA512
f9ffc61326c7acf79ca5c6e3405126ed2035cd422841392c8f4e485313095e13ef0220c275a756481dfb8542e75ad14e66311d6d039dc2aa51d799cd63de97c1

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/adc3/AppVersion

Filesize
26B

MD5
0e948e7944e9bd89b34137b0500e379b

SHA1
8e0d65b5717f03cd333a81ad41f2fb4cd24bcde2

SHA256
f59203464ab05d17d49ce3d33e7cc3c007316a21da5d7f2bce7e9881d6de17c6

SHA512
d4c3b883227c04df25c8cd657edb5639481b1ae7085469bc23c5c5f5fac0784c9d0a180a4fbf327f9513e793682def9617fe4b5bc3b98a0684c4db10c43428df

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/back_.png

Filesize
1KB

MD5
ebc06fd3d86c27a426932a83325eeffb

SHA1
461c990e677114de3baba2a33f0a60c0a10bb9d2

SHA256
ada010f03b82133ccddb4ac69a7c81a1d507121ef1d276c7c191bb55401c2230

SHA512
3b3c682dc3876f7c813bff1a38e53e0c20f6c776eeb8362a8a750b81d0a3132a207b01740a493c61a03261748399e020aec5fcb7354c723e4f5703efe5418b2b

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/back_dark.png

Filesize
1KB

MD5
355eb0af21063fefca005d93d6afa9c9

SHA1
f854e3d2f0c0470a54e55f31017f9c499bd3671d

SHA256
b50339f939827a8e5a918ee4ed1d8213e27f6d546a98313f90449b27a1ebc00d

SHA512
ffff59e303636383dccc1282dea4c13b8c46d9aea1d646d745f7d26607cfabc25aea8001af873942749129291abef5dc5a858e7360cbfc145f870b80689b34e9

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/browser_icon_dark.png

Filesize
1KB

MD5
cac9a26c27728066be7a285defc0df6c

SHA1
9931d42eea7663aaec4eb901bcf279b246c19e34

SHA256
9347cbd8e6e2af4d09759e55b7595474648619da07992d6485b9756ab4d8170d

SHA512
11a3abfc4558e6c887f1f809a3837ffe6f4c1702407db945319acacaa5e677f6b117c07ca676cda6438639a1ebc447a2993e0ff31be8ef797bd219700f508ba5

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/busybox

Filesize
209KB

MD5
8c63ca86e6f030fd7a11fa739a319fd3

SHA1
c4ea94cf652af134c451dbed0d794ef7ab9937dc

SHA256
145ad43b8aaed463ad4333b71b464e44efed3803713846b974abb7a4925b8d16

SHA512
7db10d4da18917b098630c304ccdfad0090add058364a4724c9a69d94266e540f1ba1728f12ec62e0010842eb967bcd04f2c1145ef9bbcf9991a67fa56b80126

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/close_button.png

Filesize
2KB

MD5
2d858e8af5d9426fe061df5c82ffa6ff

SHA1
bc1b2eab876aa221b6449d11e482de24b777d58f

SHA256
73d875bdb982c50c666e30ba2b8ae2dceecc63cd0d5f8a35158edfe5f3303835

SHA512
aabaa75856cfc07bf65f3f2dae118e357cba83a45f0a900aa625f576de47c2753b0a00fb1913e45c1d743acc0f6e0100a4a6a326f402b0f4664ba181ad670c0c

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/empty_star.png

Filesize
895B

MD5
76ce13c6312eb334fd351e3b5cff4bf4

SHA1
203bd863b812c071ab3ae25bf4ab2f9c4d42942b

SHA256
f0a8e8d6b8bcb84e466f921dfb20a91fdd4e4b1777d9b0be6ad4d03d4a253af8

SHA512
d06ba34786090e3b027670a17910d2e35f48eb7bc639e6da1d08214534215797dadd1a56be44422b176801e5d1a1345cd2bf29e73acb6a49bc9a2f7670710783

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/filled_star.png

Filesize
753B

MD5
317f802aacfab6282b8f74f280e841c1

SHA1
3b746a76f6322e97fd6c09a43d03ac14631d93e1

SHA256
f37f9a17c20ca3068f4f9db08c262c62b7b86544532f612a78421bdee92f4196

SHA512
a714f902ede615507cef840dcc03a5eca183c21c82cc419a924587f38b6974f5aa45fcfcc2bac4d6cf82b81d1b6ad452540e0581751bfcad72e524c83757a301

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/forward_.png

Filesize
1KB

MD5
9ee047a6801bec9459a9dd5ec7068078

SHA1
1aaaffc208e2d86e53fc031e8413169850e65746

SHA256
9f63f6c9ed9d33f235c30508df34c3358b55cac8bfb4967fc3e15afc61a6fd12

SHA512
8245818df5ffe06c8f369c8d77479f9f2163d10dac36b0e37c834018b713dc8b063ec1de1862fe16a8c1a769b496652be880ddd48d6fcd24ad766a395bc3ff24

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/forward_dark.png

Filesize
1KB

MD5
12bfe20382337a84c0fc004a52b9ba9b

SHA1
ead15f7ef372c16f78060b8f8c5fc6e0ca6a96f9

SHA256
621fbcd864a7dceacffddb00a682148042732aeb675e22cd42b1a0937c6717a5

SHA512
7a346febc49154dd348be77f88c6e7ed5c7a531c2fed981f12c40e22a19e4e1a5c51fa766b3122898d97f05e1546a6f2a29b598b0ff441cc7de5e3c505aa33c4

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/half_star.png

Filesize
895B

MD5
a40e6a567b7aef329bda0ac200f7a23d

SHA1
2fa463649c7ba586b28670675a15e0d7a630c7e0

SHA256
ee0933e12dd4e302b1e18572d22f48861e8125e5d0201603e024d18ef5e38556

SHA512
5e77ca21445a09aa903ca08c10c1bcaf769d8273368b7981aacf1bbab08cefb7a521687e78d280828f46b625c99fde02050f5c914dd4d07fd742723f7713ee4f

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/logo.png

Filesize
2KB

MD5
45c24a8686a0978086c99f7039accc17

SHA1
c63ae2601322045390c7a4f230602b74ae18d2d8

SHA256
bc9c4aa36a0dd7efe16a8b3bca9172d970fd13d70d3e718aad17a78269079912

SHA512
d5861c64b9dc9139904c3bfc7da26fa6f3d9676a5b4203ad617c661d54d3716508fb02f282f5c204bf9d6a0c7162bbb565a44f2ceb96d825177065818b797727

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/shared_prefs_sdk_ad_prefs

Filesize
153B

MD5
65026ee778e1372d9f4aed742772e893

SHA1
5a5f1c821d7639424f3c75a44468ab5f7dd4e8cc

SHA256
15070f52136d5a8332f8d70f790bd7bb04cd6a99b386d40e0abedc40c42caa3c

SHA512
589c4a12c6b6ec1a1cca957da758aaa900e68a23b4bc2f42524b0e8dd34f6c5378541d9293eae1ae8d478bf5b5229ce4218c058fc3b399eb5756afeb05c68616

Download Submit
/data/user/0/ru.sobgqfur.fjgfgkcxl/files/x_dark.png

Filesize
676B

MD5
1b759349f0bf3e55c51e2a2c2802b3cf

SHA1
5a608a093fa5f513d1ba52e8a9e01f693c47da98

SHA256
59d83bb6ebc5394c048273ea9e1516a2bc7a6f80212d53f81ee44cb1f9b65443

SHA512
3b39d22d0f8368dac2e36884b0316c5aba24180f51cb3a993fdefcdcfd5a36823d6c02c75863cd5a3bc0808223dcadf9934d548c433332bb9528f0eb8cecc0a6

Download Submit
/storage/emulated/0/Android/data/ru.sobgqfur.fjgfgkcxl/cache/UnityAdsCache/UnityAdsTest.txt (deleted)

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/storage/emulated/0/Android/data/ru.sobgqfur.fjgfgkcxl/cache/UnityAdsCache/UnityAdsWebApp.html (deleted)

Filesize
2.2MB

MD5
8ae099facbbe7c96b1a7de24dd3f8bcb

SHA1
9bf04713a81ef1c94e7e5f298d990d6fc944b09f

SHA256
2cd36c5a9f434b0d32f02cd3955c572151b8fa9c7517a25069ee4719a6511410

SHA512
9d6e4eb82494e76d4741b7743ea561f198d244bfa575a02c21a05d5f3649d5e2508b21719409e7900a06fc8b9dc93a6e556c67aa4a217007af7927873ca69a60

Download Submit
/storage/emulated/0/Android/data/ru.sobgqfur.fjgfgkcxl/files/LuckyPatcher/AdsBlockList.txt (deleted)

Filesize
1KB

MD5
634ab5e3e49b830079f88825c88d7f80

SHA1
cabe4068d07d52c60f5b9f840fd887051748a3aa

SHA256
2824000ad496be920c29d0a78589c72935288b40ce44b44c5fae672fbfe87fe4

SHA512
ffc893fcad8d81f6ca272cf03737ab466eafd135599e6f6f20285d7f4c3454bedde4de5929dbb1be5010192747f5f11d86166509f24bfbf778f949762e47ef72

Download Submit
/storage/emulated/0/Android/data/ru.sobgqfur.fjgfgkcxl/files/LuckyPatcher/AdsBlockList_user_edit.txt (deleted)

Filesize
29B

MD5
302f7b6d9a4ffeccdda9ef94184c8326

SHA1
d4038ca0629f57b7e5c4056e74a395e5598aa16a

SHA256
5b36134b695f0a9a32f570b08cc3ef74e0687a0d2aa228853bc0346f77bffebe

SHA512
299fda4936acf6479e22f9166d545976d5d99ba6fe7a5b7298cb336cf730eb7790524e4569fe64bc03c598c7e4117f163ddffc2e2889439f709c4d80ff665039

Download Submit
/storage/emulated/0/Android/data/ru.sobgqfur.fjgfgkcxl/files/LuckyPatcher/Changes/changelog.txt

Filesize
44KB

MD5
f33be26debeddf0e9a7c09c9cff3de88

SHA1
9e6b341947c3b36d44ec278b725b6b00e39314f3

SHA256
7f9bc8f892bbed27779b48b93019257657fab55d3fe5798fc4a4f490a00aba03

SHA512
d04dba29dde7b66bfa2ec0025892b199f3283bb248b9849a6536e2871e30dff82850887e6f78fcb843499b97db43903c9301575881beb93f745e4336075fa3d8

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v16

MITRE ATT&CK Mobile v16

Replay Monitor

Loading Replay Monitor...

Downloads