flash

es.gob.radarcovid.apk

Status: finished
Submission Time: 15.10.2020 17:18:48
Malicious
Spyware

Comments

Tags

Details

  • Analysis ID:
    298758
  • API (Web) ID:
    492664
  • Analysis Started:
    15.10.2020 17:20:05
  • Analysis Finished:
    15.10.2020 17:42:04
  • MD5:
    372335fc752ee6f45be46e36eb0e813f
  • SHA1:
    bd99b545c6787aa7fd0efb70987ec2e38bdd8469
  • SHA256:
    090a9f47705fe00b60a7659ce926462943be2608e616359410fa0a3306646da4
  • Technologies:
Full Report Management Report Engine Info Verdict Score Reports

System: Android 9 (Pie)

malicious
48/100

System: Android 9 (Pie)
Run Condition: No behavior, retry without instrumentation

malicious
56/100

malicious
9/59

malicious

IPs

IP Country Detection
172.217.168.74
United States
108.177.127.188
United States

URLs

Name Detection
http://maven.apache.org/xsd/maven-4.0.0.xsd
https://android.googlesource.com/toolchain/llvm
http://fontawesome.io/license/
Click to see the 58 hidden entries
http://schemas.android.com/apk/res/android
https://github.com/JetBrains/intellij-community.git
https://graph-video.%s
http://www.slf4j.org/codes.html#StaticLoggerBinder
http://findbugs.sourceforge.net/
https://fabric.io/sign_up
http://www.opengis.net/kml/2.2
http://goo.gl/naFqQk
https://github.com/JetBrains/intellij-community
https://goo.gl/J1sWQy
https://graph.%s
https://google.github.io/ExoPlayer/faqs.html#what-do-player-is-accessed-on-the-wrong-thread-warnings
https://svn.apache.org/repos/infra/websites/production/commons/content/proper/commons-lang
http://www.slf4j.org/codes.html#version_mismatch
https://d1wp6m56sqw74a.cloudfront.net/~assets/795aa82f4ed30335b5883066023f1cc7
http://issues.apache.org/jira/browse/LANG
https://mobile-service.segment.com/v1/attribution
http://www.android.com/
https://github.com/facebook/react-native/wiki/Breaking-Changes#d4611211-reactnativeandroidbreaking-m
http://fontawesome.io
https://api.segment.io/v1/import
http://commons.apache.org/proper/commons-lang/
http://maven.apache.org/POM/4.0.0
http://www.apache.org/licenses/LICENSE-2.0.txt
https://app-measurement.com/a
https://settings.crashlytics.com/spi/v2/platforms/android/apps/%s/settings
https://api.amplitude.com/
http://svn.apache.org/repos/asf/commons/proper/lang/tags/LANG_3_4
https://android.googlesource.com/toolchain/clang
https://fontawesome.comhttps://fontawesome.comFont
https://goo.gl/NAOOOI.
http://www.slf4j.org/codes.html#unsuccessfulInit
https://fontawesome.com
http://www.jetbrains.com
https://e.crashlytics.com/spi/v2/events
http://svn.apache.org/viewvc/commons/proper/lang/tags/LANG_3_4
http://schemas.android.com/aapt
http://www.slf4j.org/codes.html#multiple_bindings
http://www.slf4j.org/codes.html#loggerNameMismatch
http://www.bouncycastle.org)
http://goo.gl/8Rd3yj
http://schemas.android.com/apk/res-auto
https://d1wp6m56sqw74a.cloudfront.net/~assets/84dd71e955a839ad72e67fd2ada76c0a
https://svn.apache.org/repos/infra/websites/production/commons/content/proper/commons-lang/
http://www.apache.org/licenses/LICENSE-2.0
https://d1wp6m56sqw74a.cloudfront.net/%40elavator%2Fapk-downloader%2F1.0.0%2F67c47876f5db864b1590aba
http://www.jetbrains.org
http://fontawesome.iohttp://fontawesome.iohttp://fontawesome.io/license/http://fontawesome.io/licens
https://oss.sonatype.org/content/repositories/snapshots/
http://square.github.io/okhttp/javadoc/
https://cdn-settings.segment.com/v1/projects/
http://maven.apache.org/maven-v4_0_0.xsd
https://goo.gl/NAOOOI
https://oss.sonatype.org/
https://d1wp6m56sqw74a.cloudfront.net/~assets/
https://inthecheesefactory.com/blog/how-to-install-google-services-on-genymotion/en
https://svn.apache.org/repos/asf/commons/proper/lang/tags/LANG_3_4
http://www.slf4j.org/codes.html#substituteLogger

Dropped files

Name File Type Hashes Detection
/data/user/0/com.downloader.android/lib-main/dso_deps
data
#
/data/user/0/com.downloader.android/lib-main/dso_manifest
data
#
/data/user/0/com.downloader.android/lib-main/dso_state
very short file (no magic)
#
Click to see the 1 hidden entries
/data/user/0/com.downloader.android/shared_prefs/com.facebook.sdk.USER_SETTINGS.xml
XML 1.0 document text
#