flash

SM-Covid-19_it.softmining.projects.covid19.savelifestyle_V51.apk

Status: finished
Submission Time: 09.06.2021 17:55:40
Malicious

Comments

Tags

Details

  • Analysis ID:
    432085
  • API (Web) ID:
    799689
  • Analysis Started:
    09.06.2021 17:55:42
  • Analysis Finished:
    09.06.2021 18:07:10
  • MD5:
    7f1873c2eb896783c84cc7e2dec41a20
  • SHA1:
    a4608ec1539d97bd72dd12ee774e916a0a8b492d
  • SHA256:
    b5728080de8a6a1bdb8c3a2ff52ab88f81438415e0ea83b6c56c5b49bdec419e
  • Technologies:
Full Report Management Report IOC Report Engine Info Verdict Score Reports

System: Android 9 (Pie)

malicious
56/100

malicious

IPs

IP Country Detection
172.217.22.234
United States
172.217.23.42
United States
74.125.140.188
United States
Click to see the 7 hidden entries
142.250.186.163
United States
142.251.36.227
United States
8.8.4.4
United States
142.250.186.42
United States
172.217.20.238
United States
216.58.212.170
United States
142.250.186.138
United States

URLs

Name Detection
http://www.governo.it/it/approfondimento/coronavirus-la-normativa/14252
https://www.smcovid19.org/team/
https://api.onesignal.com/
Click to see the 31 hidden entries
https://app-measurement.com/a
http://www.lineto.com
http://www.lineto.com/The
https://s3.amazonaws.com/android-beacon-library/android-distance.json
http://www.lineto.com/Lineto.com/Font
https://www.smcovid19.org/privacy/
https://firebase-settings.crashlytics.com/
https://goo.gl/NAOOOI
https://update.crashlytics.com/spi/v1/platforms/android/apps
https://github.com/grpc/grpc-java/issues/5015
https://firebase-settings.crashlytics.com/spi/v2/platforms/android/gmp/1:702408125253:android:e54201
https://goo.gl/NAOOOI.
https://www.smcovid19.org/lindice-dei-contatti/
https://developer.android.com/reference/com/google/android/play/core/assetpacks/model/AssetPackError
http://www.lineto.comhttp://www.lineto.comhttp://www.lineto.com/The
https://reports.crashlytics.com/sdk-api/v1/platforms/android/apps/%s/minidumps
https://onesignal.com/android_frame.html
http://www.salute.gov.it/portale/nuovocoronavirus/dettaglioContenutiNuovoCoronavirus.jsp?lingua=ital
http://schemas.android.com/apk/res/android
http://www.salute.gov.it/imgs/C_17_opuscoliPoster_444_allegato.pdf
https://%1$s-%2$s.cloudfunctions.net/%3$s
http://schemas.android.com/aapt
https://reports.crashlytics.com/spi/v1/platforms/android/apps/%s/reports
https://www.softmining.it/index.php/sm-covid19-app/
https://firebase-settings.crashlytics.com/spi/v2/platforms/android/gmp/%s/settings
https://goo.gl/J1sWQy
http://schemas.android.com/apk/res-auto
https://raw.githubusercontent.com/pcm-dpc/COVID-19/master/dati-json/dpc-covid19-ita-andamento-nazion
https://raw.githubusercontent.com/pcm-dpc/COVID-19/master/dati-json/dpc-covid19-ita-regioni-latest.j
https://update.crashlytics.com/spi/v1/platforms/android/apps/%s
https://covid19-99fe6.firebaseio.com

Dropped files

Name File Type Hashes Detection
/data/app/it.softmining.projects.covid19.savelifestyle-zcBxyg0PT6Gq20Ahp-doRA==/base.apk
troff or preprocessor input, ASCII text, with very long lines, with no line terminators
#
/data/data/it.softmining.projects.covid19.savelifestyle/files/createdfiles0.csv.part
ASCII text, with no line terminators
#
/data/user/0/it.softmining.projects.covid19.savelifestyle/files/PersistedInstallation.W0RFRkFVTFRd+MTo3MDI0MDgxMjUyNTM6YW5kcm9pZDplNTQyMDE5NjEyZTE2NWRjMjdhYzJj.json
ASCII text, with no line terminators
#
Click to see the 1 hidden entries
/data/user/0/it.softmining.projects.covid19.savelifestyle/no_backup/com.google.android.gms.appid-no-backup
empty
#