flash

Tawakkalna Covid 19 KSA_v2.8.1_apkpure.com.apk

Status: finished
Submission Time: 30.05.2021 16:19:58
Suspicious
Trojan
Spyware

Comments

Tags

Details

  • Analysis ID:
    426773
  • API (Web) ID:
    794377
  • Analysis Started:
    30.05.2021 16:20:10
  • Analysis Finished:
    30.05.2021 16:46:22
  • MD5:
    4869f7474aae3df940284cef6c05513f
  • SHA1:
    ffe8efd20524e164beaacbc8fc3a2d35e4b0712a
  • SHA256:
    8c5d1cfd962fa438019415e74ef5673af76bb6aec1b89228114c27d302b51cd2
  • Technologies:
Full Report Management Report IOC Report Engine Info Verdict Score Reports

System: Android 9 (Pie)

suspicious
38/100

System: Android 9 (Pie)
Run Condition: No or little behavior, retry without instrumentation

suspicious
38/100

IPs

IP Country Detection
108.177.15.188
United States
216.58.214.234
United States
142.250.186.163
United States
Click to see the 5 hidden entries
8.8.4.4
United States
142.250.186.42
United States
172.217.16.110
United States
216.58.212.170
United States
142.250.186.138
United States

URLs

Name Detection
https://dataapi.address.gov.sa
https://twitter.com/#
https://app-measurement.com/a
Click to see the 30 hidden entries
https://ta.sdaia.gov.sa/en
http://schemas.android.com/apk/res/android..net.alhazmy13.hijridatepicker.VerticalTextView
https://ta.sdaia.gov.sa/FAQEN
https://f-droid.org/repository/browse/?fdid=org.torproject.android
https://goo.gl/NAOOOI
https://update.crashlytics.com/spi/v1/platforms/android/apps
https://ta.sdaia.gov.sa/en/privacy-en
https://goo.gl/NAOOOI.
https://ta.sdaia.gov.sa/FAQAR
https://dataapi.address.gov.sa/v3.1/data/address.ashx
https://reports.crashlytics.com/sdk-api/v1/platforms/android/apps/%s/minidumps
http://schemas.android.com/apk/res/android
https://aaa.txt
https://ta.sdaia.gov.sa/contactAr
https://check.torproject.org/api/ip
http://schemas.android.com/apk/res/androidAAm104.418
https://ta.sdaia.gov.sa/privacy
https://f-droid.org/repository/browse/?fdid=com.psiphon3
https://ta.sdaia.gov.sa/contactEn
http://schemas.android.com/aapt
https://reports.crashlytics.com/spi/v1/platforms/android/apps/%s/reports
https://covid19.moh.gov.sa/
https://firebase-settings.crashlytics.com/spi/v2/platforms/android/gmp/%s/settings
https://goo.gl/J1sWQy
https://ta.sdaia.gov.sa/Urd/index#tawakkalna_section_4
http://schemas.android.com/apk/res-auto
http://heartbeat.nic.gov.sa/
https://update.crashlytics.com/spi/v1/platforms/android/apps/%s
http://schemas.android.com/apk/res/androidMMm104.707
https://ta.sdaia.gov.sa

Dropped files

Name File Type Hashes Detection
/data/user/0/sa.gov.nic.tawakkalna/app_dx/Generated5922268829928817579.jar
data
#
/data/user/0/sa.gov.nic.tawakkalna/databases/store-new-db
data
#
/data/user/0/sa.gov.nic.tawakkalna/databases/store-new-db-journal
data
#
Click to see the 4 hidden entries
/data/user/0/sa.gov.nic.tawakkalna/databases/store-new-db-shm
data
#
/data/user/0/sa.gov.nic.tawakkalna/databases/store-new-db-wal
SQLite Write-Ahead Log, version 3007000
#
/data/user/0/sa.gov.nic.tawakkalna/shared_prefs/sa.gov.nic.tawakkalna_preferences.xml
XML 1.0 document text
#
/data/user/0/sa.gov.nic.tawakkalna/shared_prefs/secure_shared_preference.xml
XML 1.0 document text
#