Overview

overview

7

Static

static

7

ed86065b59...ca.apk

android-9-x86

6

ed86065b59...ca.apk

android-10-x64

6

player.html

windows7-x64

1

player.html

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    ed86065b59d5e780e319eaf356043dca.bin

  • Size

    29.9MB

  • MD5

    ed86065b59d5e780e319eaf356043dca

  • SHA1

    9f5e39ded61566aaeeb714b771d8c38cff3a83e3

  • SHA256

    ddb1f52087fa4a606420bac7e215fa5dc8b9250bbfbd5a6d6db07a9f26bc042d

  • SHA512

    10e296f858b1ac20e6a1210456144a704c02c5736bd0366464071ead6bbdf9adef54755b1c3056acd935ee982a6f88802eb315ec43a5a1b3e2f5687574291290

  • SSDEEP

    786432:DsPYPcNmz+OTnHSQO0MCtqqtJsam6jCCS0ai4USIbp5O:DsPYkNorTHUCrtbjCCS0ai4lIbpg

Score
7/10

Malware Config

Signatures

  • Requests dangerous framework permissions 3 IoCs

Files

  • ed86065b59d5e780e319eaf356043dca.bin
    .apk android arch:arm64 arch:arm arch:x64

    Password: infected

    com.mycompany.mercadopago

    com.mycompany.mercadopago.MainActivity


  • 05ca79e2-9cce-4ba0-95ca-f448942db91d.avif
  • 1684336310067.png
    .png
  • 6340165.png
    .png
  • 63624bc390762__838x390.jpg
    .jpg
  • 96285-loading.json
  • AssetManifest.json
  • AssetManifest.smcbin
  • Beneficios.png
    .png
  • Claro.svg.png
    .png
  • CupertinoIcons.ttf
  • FontManifest.json
  • Icono_Celularr.png
    .png
  • Lato-Regular.ttf
  • MaterialIcons-Regular.otf
  • Montserrat-Medium.ttf
  • Montserrat-Regular.ttf
  • NOTICES.Z
    .gz

    Password: infected

  • NOTICES.Z
  • Poppins-Medium.ttf
  • Poppins-Regular.ttf
  • Roboto-Regular.ttf
  • SALDOOO.jpg
    .jpg
  • Screenshot_20230517-115745~2.png
    .png
  • Screenshot_20230517-213435.png
    .png
  • Screenshot_20230523-192833.png
    .png
  • Screenshot_20230606-183538.png
    .png
  • Screenshot_20230630-002139~2.png
    .png
  • Screenshot_20231001-202034~4.png
    .png
  • WhatsApp_Image_2023-07-18_at_21.29.24.jpeg
    .jpg
  • WhatsApp_Image_2023-07-18_at_21.30.12.jpeg
    .jpg
  • aasas.png
    .png
  • activation_congrats_success.mp3
  • app_launcher_icon.png
    .png
  • baseline.prof
  • baseline.profm
  • botton.json
  • cash-register-fake-88639.mp3
  • clock.png
    .png
  • cobrar.png
    .png
  • cobrar_poin.png
    .png
  • copiar_(1).png
    .png
  • descarga.jpg
    .jpg
  • descarga_(1).png
    .png
  • dinero.png
    .png
  • fa-brands-400.ttf
  • fa-regular-400.ttf
  • fa-solid-900.ttf
  • favicon.png
    .png
  • icono_cuentas.png
    .png
  • icono_tren.png
    .png
  • ink_sparkle.frag
  • licencia-de-conducir.png
    .png
  • mercadopago.png
    .png
  • mixkit-interface-click-1126.wav
  • mp.png
    .png
  • opcion-de-retiro.png
    .png
  • player.html
    .html .js
  • section-2022-lg.png
    .png
  • sound.m4a
  • susefull.mp4.lottie_(1).json
  • telegram-icon-free-png.webp

Android Permissions

ed86065b59d5e780e319eaf356043dca.bin

Permissions

android.permission.INTERNET

android.permission.CAMERA

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.FLASHLIGHT

android.permission.ACCESS_NETWORK_STATE

com.mycompany.mercadopago.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION