f78d82b2415db2e11c060f35651176cbc04289d8e5fadcfa3af032c0c2e7def8

Analysis

max time kernel
151s
max time network
148s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
15-03-2024 07:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

MundoLatino9.8.apk
Size

10.1MB
MD5

8b6621a29bbcb69c3318c18d781ce5e9
SHA1

7e82dbe6ce37e54e2cc34d57827f01b5c081d4ce
SHA256

f78d82b2415db2e11c060f35651176cbc04289d8e5fadcfa3af032c0c2e7def8
SHA512

23c78b5f0477d892f25c18171e5ac9c4129aad1650230dc5940ef30aa13e5cffbbcc1c54fd4a966abadae5a1044ac62302424d12ea9a94758dd9d7d77f8b8c5c
SSDEEP

196608:19kYd7pyOZVDutq54+TsDZnxLclh/281hGAmoSr/eersYyu5ZDBEGUpg:fk47E4pR5ri1ah/vHvK/frss

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 4 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

Processes:

mundolatino.apliblm

ioc	pid	process
/product/framework/com.google.android.maps.jar	5054	mundolatino.apliblm
/product/framework/com.google.android.maps.jar	5054	mundolatino.apliblm
/data/user/0/mundolatino.apliblm/files/audience_network.dex	5054	mundolatino.apliblm
/data/user/0/mundolatino.apliblm/files/audience_network.dex	5054	mundolatino.apliblm

Acquires the wake lock 1 IoCs

Processes:

mundolatino.apliblm

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock mundolatino.apliblm

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	mundolatino.apliblm

mundolatino.apliblm
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
PID:5054

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/mundolatino.apliblm/databases/google_app_measurement_local.db

Filesize
16KB

MD5
188c0542bc062e48b614e5ca8c1081af

SHA1
0eb9b89a5c92957cd1fe748cc063b32853339774

SHA256
c1ccc325c2699ed7f556cf171566317f706a911c4d02b1644a2a7908b93da58b

SHA512
62a67f2c56bc3b40d49c80094f160d355a8f67130e1924109426e0481008bc2cd11a9e2675a901abd03cad1e7fe0028031e20d826437edcf35b6f86e2499c2b4

Download Submit
/data/data/mundolatino.apliblm/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
236dd55000891f2388a4d08ba86d7ece

SHA1
acf6528d6e3e3cb3dac5ed6d627dee214e4e9aff

SHA256
c36f6654dad5c0d6cec455635f9efb267fcc95a188ecf62ef1d1c677187d14ff

SHA512
53da730305bc1625afb02d9915e219adba852027f8aaf9ac3b0ab315f42a6e8edb673f02adbb88a9baf1c3520ff641a5382a33073149c04bd8955944aa146c2c

Download Submit
/data/data/mundolatino.apliblm/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
0711398042de548b2051fdf810d82293

SHA1
1a794b3e8a327888f1897a2763fcf079c2fafb1c

SHA256
d529044ed1360aa322f70d4293f3fa349db01f75a4de6ed9c638c753dcd722d4

SHA512
cdcde2d5d64a35694e3f0f53e1da9abf09004e1f99f9a4c58a8dc96a84379afb521610d1fc3435138676049297776298f032f0426fa15a11c13769a0a615b412

Download Submit
/data/data/mundolatino.apliblm/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
f2ecb20de03ab7ee69b2c5cb84275190

SHA1
efcc69e8a66ea3ad7491b4e35cb84abd1b0f91a3

SHA256
2a6ee7fd09561789b5e55cdaa7ba9c3ce3f7611374f8460ac5f8e58154a4d3ba

SHA512
4f7dc9de8ae7d8c6e6a02b2cd31910cf3e7d65f8338b095be7b4b476a0b54f36870f4f2472930f0be4b3eab49ba4f81ea9399dc52cbaf24d23f3d15d9010faab

Download Submit
/data/data/mundolatino.apliblm/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
49916f92b24ccb2f33cece721a979eca

SHA1
c33d4101d6a4055415452003f2e3dc7892bbd4d2

SHA256
62655dcaa076086d2c6be26ffbdc1360cad3c625de967612dd6fd26463007d6c

SHA512
5038c9d5d5ba98cf83cf3a64ec3757b5abcef486f515b7e6cce40e6f189884ffdeee61ec8dce4529695df5a64dd1dad52a9a2458bc9b80fd8136218de3ab745d

Download Submit
/data/data/mundolatino.apliblm/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
d97b3537fe469c35990d936f52ddbed9

SHA1
446b431c43c51e02e374643de1dfda6fb71488fc

SHA256
456700ea2e48324daafe8471e6564aa342e1026f32a1c82020aa1edd6a867bff

SHA512
99e2ce0808621f797b2745fb12a513fe908b1337401499adf90dcb1b57746848020528ead7e76e7476ed211e029306e12014a776cdfc8089c2539028aeb8bc03

Download Submit
/data/data/mundolatino.apliblm/files/audience_network.dex

Filesize
1.3MB

MD5
72cf3240c8a97551d6f066aec63efcb8

SHA1
ec9e6fc72197add8c622c73de35c5a09e2e15cb4

SHA256
af54a6d29fc12fa75f4f9d99f4f8b0cd9306c93910228dab90055e970ee981f4

SHA512
95fbed1cb6462f247d8ef5e4d6cebe28b59faa9d4ce2f334ca65cf13d995645d37002bbe8b8dc305b85973dcbd5066a2090fbe2aaa638ccdb49f5dd0e706d11c

Download Submit
/data/data/mundolatino.apliblm/files/vinebre_ac.txt

Filesize
19B

MD5
6da123313cbb9fcf30bb31ee5e857b67

SHA1
d673a15f9b4985af09ff0df38ec9479493df7919

SHA256
fff0a33433825037c72d607b68048d78d472000d65ad8da56d4cd7128139b617

SHA512
99d9c4f3855a5705521906608e50ea090ccfad6280dba2b5942ffb593f19e7acefce5089e520056c3b74672c1cef3395e93ce7e5e65f60a24f6809c45c79c196

Download Submit
/data/data/mundolatino.apliblm/no_backup/com.google.InstanceId.properties

Filesize
2KB

MD5
aa3b179d838fcee6aa4d1f158d67f4ca

SHA1
1ae3700457f71c517f49dfa3b461e56f407aff4e

SHA256
df7ac25e16799e05ac546d9fb0a7992d4c06162be84468a7711d4baee4507c9d

SHA512
687911edd3f8d6dd85d58f71cd273e606611269cecb532fe2d4ef52a2ba92771f5f60112a6ec3be38407c9c7de8033193ea61e89f8d082f3134e12be50b7e5b0

Download Submit
/data/user/0/mundolatino.apliblm/files/audience_network.dex

Filesize
3.2MB

MD5
69cf159b893eefff9a8106cc3ee37e03

SHA1
165207adfe8c6047ce9f3dd38aed50796c1660d1

SHA256
26fb1a790377e11135bf8bfa7552cc2797d351df60154ea032ceeb4463776fdf

SHA512
379960366739517c1c856834227aaa1a30a20a9bab730d4229f200192f2c643b69a3e2e114dbdd743a69577e0b7b477c0d14e71c31ee491e137ec405f79e71aa

Download Submit
/product/framework/com.google.android.maps.jar

Filesize
315KB

MD5
4899aca36d1ed747a447dcac0d101a62

SHA1
32e43edc0bf3e036683ea8639472e6cd31ab9929

SHA256
67a651acd867e046fb4463b31ea584c1468f7243a9d1e2efd34059e8ee2f130f

SHA512
50b23dd279a9efba566c6a6523c7537723c0cd6dd3e4871f1cbdb8d5bc355caa3ddea99452b1c8e5356802f812b3768066a9848b93d715bb8bdfa455b704285f

Download Submit