153d5d69a3c27d3eb0b8e1de51a178895cd8eb56dcf0dd8b87caee6a917b3e93

Analysis

max time kernel
407940s
max time network
105s
platform
android_x64
resource
android-x64-arm64-20220823-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
submitted
03-02-2023 17:24

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Internet Ilimitado Gratis.apk
Size

1.4MB
MD5

1b7c4403eb47f39e041c28de1c21858a
SHA1

8ab1e8c4a904f92d5aec4880c5a4bc38e0102abf
SHA256

153d5d69a3c27d3eb0b8e1de51a178895cd8eb56dcf0dd8b87caee6a917b3e93
SHA512

26513859ffe9d5b929dbbedaf413ee20c948c2f2462127bc811b0942c549106f6ddf7eec7634608f7d51fd4d5bfa650c2aa2028fa36c26b481527e6c9db73381
SSDEEP

24576:8yIzSBTPtLiLe3r7JpOdTlhPS+dVlQ6c9S3MyZnNOVoGGwulP8d4AXG4h:86r5i63rnSlM+dVlV2GnNOVYls4AW4h

Score

7^/10

Malware Config

Signatures

Checks Android system properties for emulator presence. 6 IoCs

Processes:

internet.ilimitado.fresa

description	ioc	process
Accessed system property	key: ro.product.name	internet.ilimitado.fresa
Accessed system property	key: ro.bootloader	internet.ilimitado.fresa
Accessed system property	key: ro.bootmode	internet.ilimitado.fresa
Accessed system property	key: ro.hardware	internet.ilimitado.fresa
Accessed system property	key: ro.product.device	internet.ilimitado.fresa
Accessed system property	key: ro.product.model	internet.ilimitado.fresa

Checks known Qemu pipes. 2 IoCs
Checks for known pipes used by the Android emulator to communicate with the host.

Processes:

internet.ilimitado.fresa

ioc process

/dev/socket/qemud internet.ilimitado.fresa
/dev/qemu_pipe internet.ilimitado.fresa
Reads information about phone network operator.

ioc	process
/dev/socket/qemud	internet.ilimitado.fresa
/dev/qemu_pipe	internet.ilimitado.fresa

internet.ilimitado.fresa
1⤵
- Checks Android system properties for emulator presence.
- Checks known Qemu pipes.
PID:4379

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/internet.ilimitado.fresa/app_webview/.com.google.Chrome.Oe8dzI
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/internet.ilimitado.fresa/app_webview/Default/Web Data
Filesize
120KB

MD5
a48cd9324b1f8754b07f00d863b840f3

SHA1
11c6614775b35a58f440971dfc87c8aaac6d6173

SHA256
8859a216183793485d4699bf69d7ed96904679834188d07b9a70424d47eb1420

SHA512
35fa712f0af4a5eeed7e00e4e59ed5027dc6609d268462fe79d92043be9ae0c5961ce9e1d2f64b1a196c9b6aa6242b8b83817b3ee4c1058596c58a99c45478b1

Download Submit
/data/user/0/internet.ilimitado.fresa/app_webview/Default/Web Data-journal
Filesize
2KB

MD5
ee92c1dd2df74b0ef2f17ed029285d4e

SHA1
5a40ea77bbaa394e70b85ae8f706f2504355e782

SHA256
eda056c50bd62180f8c8749142ffaf18d35dc35adc9945b66bddfcac554eb47f

SHA512
f2d53037a139570f2b5b38a6fbb761fbef99bb1d46e56f20ff1ea159a4e78578ba35b1c8eda3686ff88d859f05830b9fe4e1a641b1e156e98c1761b69e49abed

Download Submit
/data/user/0/internet.ilimitado.fresa/app_webview/variations_seed_new
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/internet.ilimitado.fresa/app_webview/variations_stamp
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/internet.ilimitado.fresa/app_webview/webview_data.lock
Filesize
30B

MD5
9461dad82c356f50d32a038683b7957c

SHA1
fe9601d510557dbb743d24691a764cae38cba81e

SHA256
38f0e8a0b70ff2b93726fb422b7f8786538ad11b9a9bf1d88aefb76152318f95

SHA512
dcac0632979529839523669c840fc6be3faacafe58c77d7cb81e39cc99e0af416b1a190ad81a6259d13a8a8eb22b726108759ac1c83bc6860d575d119a38b64b

Download Submit
/data/user/0/internet.ilimitado.fresa/cache/WebView/Crashpad/settings.dat
Filesize
40B

MD5
2c32d9502b5d24be88e6cce0d4502c0f

SHA1
8ded8bbb95a741c0b89b8b56c0fdc134647d8d5d

SHA256
92076ec2481588fd8b81e7532e80efb7079b02adf4f0868248f26c81fb5032c0

SHA512
58dead1a82b3d5b3a2faa0016661d7fcf3d3fd763c7e9baa08b24cd691cc9a46a753edf2359cb791491f353e021800f04630210d49399d36c22aead6de7d79f7

Download Submit
/data/user/0/internet.ilimitado.fresa/cache/WebView/Default/HTTP Cache/Code Cache/js/index
Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/internet.ilimitado.fresa/cache/WebView/Default/HTTP Cache/Code Cache/js/index-dir/temp-index
Filesize
96B

MD5
cd6a9bf036c23ee7785469742e265685

SHA1
a7bf1107b027c21617ea5fe0daf06e64a47e92ff

SHA256
813e36f08390765efd1a60ccc2b250563a3b548eea4c7a442b6a28b0845e99ef

SHA512
de1ad71efaa50a543cc5fe6c6bb56a8cb849765076ca4da65491dafc44ffde8afc702228080a4275fad5b25271cb51f2c896709252bc208a7422952061ce32b6

Download Submit
/data/user/0/internet.ilimitado.fresa/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index
Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/internet.ilimitado.fresa/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index-dir/temp-index
Filesize
96B

MD5
3dff9dfeecf97e1111cb147e508bc93f

SHA1
567abb13c20eb3400e2f06f9d1256e4d23de4ebd

SHA256
f3e1eb47a6430701518ce9bf824248acf919bfd58a5c213a95f09e1a41bef219

SHA512
32e29287cefff44af300ba24820e1d1e938069fc1622845d2b3157b2bfbf2f95e57a38af954ce155fd328d6265cb6a9ad2f711befe45c3ea7aa6fd938a734462

Download Submit
/data/user/0/internet.ilimitado.fresa/cache/WebView/font_unique_name_table.pb
Filesize
57KB

MD5
f080fa2a56ab5479d58063e5ea871447

SHA1
4b3fd57a98916fa5784305b76ba30af26b5253d9

SHA256
0aa374bc456330fd1b5daf18d25b4bb8e2df1998dfa85466f2c31843ff56e815

SHA512
8aee3186a95b389d39882620b7c4199a29aa50580aa98a381b2931a934de6406943c89d4d00ebeabff21e2b03b4a4adcc01e37e32a2335c4838be24bdbf61936

Download Submit
/data/user/0/internet.ilimitado.fresa/databases/StartApp-d6864f2502af7851
Filesize
208KB

MD5
b8299667e510d50d7fd81c3575af16a5

SHA1
7e4aaab9af224973e9382e681cce9f80c06cb097

SHA256
267cc3b689b78c052f71c6aa4af53e977d6d5b01dfc997acdea69df5448a6d70

SHA512
b2d6401e2d992dece4d79b45ccb7dbaba254f843331b29698cad22010685501835f902da6eae1f5fca69b99493d35a9c77190e7902ff04931d5fc84829b7d70a

Download Submit
/data/user/0/internet.ilimitado.fresa/databases/StartApp-d6864f2502af7851-journal
Filesize
1KB

MD5
d6f85c608a485e091fedbd140ba67d28

SHA1
e0e61b8e9902d929595a2f07fbbdc87ba5f075fe

SHA256
6ccf74b11de94b5c12f54344af172c79447804c8f75a60e3c2c7cd65a3a4a96a

SHA512
8281d1b485dca55f2111adaaaead4ca439473ac0f0b979e6a0938853b60cc89c55bd334222732240846d1000c0f9086b21472309ab44302c542a9fb5461c52e1

Download Submit
/data/user/0/internet.ilimitado.fresa/files/shared_prefs_sdk_ad_prefs
Filesize
5B

MD5
9dcf2a6f12095ecff342e9fa0c5ca72f

SHA1
c815f34691be353caa9de93bbdb00a31f62a9ed3

SHA256
4e68143408826326220a32d6bff59e1cca3dd85f74b018aebd6723c5686c54e5

SHA512
7ba3449f5ec3363bbee33d47abe471286cf78034dd70379fa4d0de5fd59215e8c58287eddffed1b9c3c74e157f6a9ad69b0c551001a62d04790bba49df48231c

Download Submit
/data/user/0/internet.ilimitado.fresa/shared_prefs/StartApp-790ba54ab8e69f2f.xml
Filesize
125B

MD5
6183da27d0927a0422ff145dbe60db71

SHA1
408f9a8d338cc8fcd70f1a32ce2f3b5f0904a501

SHA256
c8d7cfc822805654569a675c470b0cd9e490a4c61a07635538eca8da3c5ceeab

SHA512
d6d0838d505868f4e9003ce03cf421d515807886a79f01c00e015ff31b0ecbca81514df7bf4c0b16db32ce2807df52e35b75cc2e9f99b1288b390ef72886e3a9

Download Submit
/data/user/0/internet.ilimitado.fresa/shared_prefs/StartApp-c5f5846c2a728b2a.xml
Filesize
1KB

MD5
203f82f327142f674df1d744aeb63039

SHA1
c3e4c023837d854a6e87a6780b1c53833f1d20de

SHA256
0c61ab89033d55d2c50d25544eb328d5ec4263a9fc28de80dea9659058ba9d1f

SHA512
4428a4007da2c756ea970081b708ab3bdf86021ad3485356fa7d14c2f724be0425466585926c2a93a96c5cdf07ecb14ca08aeebac53bc21eca507fe5839a9dbb

Download Submit
/data/user/0/internet.ilimitado.fresa/shared_prefs/StartApp-c5f5846c2a728b2a.xml
Filesize
1KB

MD5
6f1109d98bad72d51e009583e991407e

SHA1
753e68c3fc0d134fe8db1a952834d204e07dd09c

SHA256
ebe6f4b623d5a452c6ddf02a4b1cffa59231c861182aeb6013c7b345c334b5e0

SHA512
12e56523dfc2c597a9c18d41133003fc57db6279f3ffba5ddf1a97fda25effbac9dbc4ef0525e36516502e5d9c78b017bd847db8af25eb1b1be47449e43145dd

Download Submit
/data/user/0/internet.ilimitado.fresa/shared_prefs/WebViewChromiumPrefs.xml
Filesize
127B

MD5
97ccd9a2b2063143df56b6937f961ca4

SHA1
5e78a91ae5df289ce83443cb7d5589dd3504fb5d

SHA256
248ff7928128015b1cfe3e6517c8f9b8c9511bfb8c8baf44fc1370640eac61fd

SHA512
86c05a5bb3d7eedea390664796966e9e5a5bf846c85808da54407788a76b3ee25b91428242a1e76d8765bfe51e1ba3636617fbab6e7dbb39fcc433e07c3fcd3b

Download Submit