9e2c1a74813c8e97808f1abda66b341a9e8aa1695879342761516f13c0ae513e

Resubmissions

23-11-2024 01:22

241123-brdjpstrax 7

23-11-2024 01:14

241123-bl6cjatphw 6

Analysis

max time kernel
6s
max time network
1804s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
23-11-2024 01:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Mercado Pago.apk
Size

29.0MB
MD5

c74f48a1d0c3647dbb9e4d027e01c725
SHA1

2561a4d9193cc2fd02de1b57b84acb3af36963e6
SHA256

9e2c1a74813c8e97808f1abda66b341a9e8aa1695879342761516f13c0ae513e
SHA512

6aaca1487741d8d94b0c8f1b80ebd3955a60827bd002ac7e3925af123851cfed4aa3ba98e416f507a13deb510a1f18e6896c1f3ab60f4db524dd2f345c545469
SSDEEP

786432:R9u6A0OV4dkOTnHSQO0yqTXN3/1Jsam6joJxi4USIbpz:H3A0OOdtTHKMZ1bjUxi4lIbpz

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 4 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

Processes:

com.mycompany.mercadopago

ioc	pid	process
/system_ext/framework/androidx.window.extensions.jar	4328	com.mycompany.mercadopago
/system_ext/framework/androidx.window.extensions.jar	4328	com.mycompany.mercadopago
/system_ext/framework/androidx.window.sidecar.jar	4328	com.mycompany.mercadopago
/system_ext/framework/androidx.window.sidecar.jar	4328	com.mycompany.mercadopago

Checks CPU information 2 TTPs 1 IoCs

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.mycompany.mercadopago

description ioc process

File opened for read /proc/cpuinfo com.mycompany.mercadopago

description	ioc	process
File opened for read	/proc/cpuinfo	com.mycompany.mercadopago

com.mycompany.mercadopago
1⤵
- Loads dropped Dex/Jar
- Checks CPU information
PID:4328

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/0e4c51aadabc921c263ef6e62e5bec86ccd7081f.temp

Filesize
1KB

MD5
362ed1e5673e9f1d75346825bc42feff

SHA1
d422ac6e0b79983414fad56609a20f3d85f26390

SHA256
698a36a2102e8dd8d4b6851861423325b56ac66b44b79f740ec6d3e9c4e344c9

SHA512
7bc0e9c0b6db1993bce652ab10ffe63a0d3729d0c961aeb1613bac9f64195c7ceb1172c26b46073f6f14c4806dc87ac17ef0d4ef9f3b33c48f8d2e0c7c4ea89d

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/16db3dbc6e0931d5b29149581808cb6401ad41a9.temp

Filesize
1KB

MD5
704f742c3e6db5127ec323b68e95ea55

SHA1
1e042de526ee5fa18efb6d79924931da2b76f9a4

SHA256
c45f6f3207784ced1f3e448b16f8984d9c0f4737b4c0047bedaa0f67221cb93a

SHA512
c5d6655338a1b01db9193f6f285d314759ad88a1e8de21a2d15da11e1bfb06101327bdf730bbc3592b5a3eaf6a5265d230578d25de31f28ee0b38ca778a3b79e

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/3d07c99069001e25e9d16e340998025eeac78fbe.temp

Filesize
1KB

MD5
dc3a6c0616c14a3272addbf9e10918e2

SHA1
5806b0949cde827f122df793344952a1d551cd4b

SHA256
138b41392f0f16409d3a6af395e9c1390f6baa2ec3ec084fc64497d5bef32fe0

SHA512
e5813b96b40274ab0fc442655aa768446c5c488e20e6544e4b0a34cb16f6d1d2367b06138d5b938f6ac2c614583943343f65164e7b70557c49c2c3f4e76cbb07

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/401a3cdfc6252bb6d777408ebfe0345b3ee162d1.temp

Filesize
1KB

MD5
e00d6990fc857981816a504872694ea0

SHA1
fe0ba308cc102881fd1317cda58ee46bb47525e6

SHA256
a83852f96166f630ebf9422ab0db7c48d191035e7bdbbdaeb5666c53e16e5149

SHA512
f7f6b9a044275bcd173a3a393e2644d58f0eefdb1855bd97f5c6add5f9486f438d889f43b0201004869fd1219ad4e0dc31b76a85bbab16db9053752572335bac

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/43e0acc2cf1b0cadb005e7b4f64c66330e003b21.temp

Filesize
2KB

MD5
1e5c5d18414255e75dfdbdd344efd285

SHA1
894f5f26c56bfbccce7d07892cc581f10fc46e49

SHA256
a80bb49ded1eacef8aa5763209eacf6da46a5658b942471fba1e43314c2d21c0

SHA512
53a10148d4f2a4797f04f48ba0dcf1b002a90af77221b46cca33cb8d8760e74f0148c192873fb35ff795b91f85fc0ad7a5f3a86413df5a9344b15ef5d84f786f

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/705add3ecd0197f2b88943a82db10f640105cfb2.temp

Filesize
956B

MD5
8db2543a353af510cbd8dfbd3275bbd5

SHA1
154a10cc23be473c5e725ae8c22945f9431a9561

SHA256
e6bcbeb142dce6713a3cfdf1360098589e58d65eab6a17ab7567be7d57d8ff42

SHA512
ab3210b37ab2d365320c62794b796570ea9776e05506d15e99476f51c50ddc517956455ad3fbc6a71dbd0bec6faac12bba090d376dda073736468301814c3740

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/7916ba0ed64110d5b78decc8fcc50a96f376330d.temp

Filesize
2KB

MD5
5e4e2423d64161a720fcfb0e2e9b94e8

SHA1
b0657b9de595ffcec293526a9f54ecd4156a45bd

SHA256
e6a1fad6233570402b66feaa6fd78e80ccbe0a5f3a8fa9b20a182a8e0ca23ffc

SHA512
ad76f4136543bdaf29d693192a17b7d0c56ce021598e6bd0dc932660c55525d8648512bcb1cb3a35e452b8f7ce72b58c11cf79192ed8e5e438830ef22a8639eb

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/7b39a766bda0d5dc51d4f5bec77beb90a6675b8b.temp

Filesize
796B

MD5
71082b8d075200706442813f4a5e002e

SHA1
8ae2fb6e3604546a8dd01b3da653971e79ee3f23

SHA256
5802d4219d059041ab4b47665243827acc065e5cc624b3667422807a9d9c16f9

SHA512
822295b60ffcc31ed014e15b37e6e8cd6fda04682f3704650ae9310fd40cebd74229f32bfe72d43e8704f74ffb7dbc3e4defea2d7f10db322766c4271e6b57b4

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/8cdf1c1f883110c64bccf7736d890bf43204866c.temp

Filesize
1KB

MD5
fa468f58c5b6c7d3cda97b986228df7d

SHA1
39f1d555b0bdf673a69722fb5c59cbbbb6638efa

SHA256
9cda587e0cc931621aed6a320c972e670314efb3ec1c47ee44e75baf5f8348f8

SHA512
da83751f9f4b03eb7c3b4d7eaa437ad23613a79e48e8dd079cafee35f27f432dd5e8e845f51001b6ea9f88183194ea4274f805346aae19f574823595c0e597cf

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/9914cdac01b83908cf184d3f2637a496bd19fe37.temp

Filesize
1KB

MD5
c8c41b21e91f5323176efcc45692e644

SHA1
e1185e9d6e8daa8f8af01399518c9f21726eaf9a

SHA256
c83fa53add863a676e29ad96586c4513301aab6fa6c9b3e9404b26d5620a6d9e

SHA512
3317b74c41d8afa29f5bac61a231fa57428b60e2c045d10c55eb943f384e0b183a7ba6c3fc4220f68bedfdd3f88b7edd89abaebc7ea22c554b425028e79f3da4

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/a34b99d0fea7226c46aef76bd20757e826c064d0.temp

Filesize
1KB

MD5
4fc9fd81321a9c8a838ee50bde332cd4

SHA1
2197118613ef9286680ef5c40719c215177cf05d

SHA256
7fd892167ae5c43595b9274cc31220a5e73656cb2ebf87a841451e82d39b64a0

SHA512
9bc29933c04a169e4a3327ee71ec42e7304cc9cdbe24f8acd2e08a54879bbcc191612bfb2c4131b360035a40aa6764eda88e7a502bdf89c871333f51e1cf6b9f

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/a38d2be86c8dff629ac4f7198a9701d7d503ee05.temp

Filesize
1KB

MD5
5d2c4c51aa5f8f7729b95abd93d95f8e

SHA1
e49296f89d3774c1d0f2dc404b66a295990b63aa

SHA256
0683bb1db3573b2a27a66018c923ed9029c0e08575dab9b6b7bbc8435ad311a9

SHA512
adadb8d694a007c80a996e4d4a92d34b35375f38020b37a677d8a08261d78856495f1f169065a10d91092254e84ed80dc24de27173768fb5b51edd7181e4e29f

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/ab6d23d4979b23431a1d1ae863cbe4b4253064f8.temp

Filesize
1KB

MD5
836095f75f669f0b4e1ca5a2c2663635

SHA1
b4420017454952c8c7abff245ffb54e31f923916

SHA256
32a5cae2e006e7375d87fd9f22f40682eeda0fe867698783e2b56ff4e9e744d5

SHA512
7685df13feff4ae368abb1b2353f7a17fdf120e39a17e9272614d483a871da77006ba107c601e8f6bf0c6ff65ed7cf32be3c99e61b20b82f29434f0f4dc29ecb

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/b0d68b6bd3210ebeb488bdbc045e9d6381eef345.temp

Filesize
1KB

MD5
70a96b3cb2de3594ee8196a62dd46315

SHA1
28058e08476d784e5c37e400acd5877dd169b015

SHA256
5b5adc03efadaafe9a62b0b9d11488de1c203a03a61e5a5c15553f963aa8875b

SHA512
1ae7b65af13ad04b5ccbac84f577cd4e3adc949c17d064ca71232795a14ce441da976e072b22e74e5ddd2bfdc65509539ef66f11bb155a4b19009f15155d95f1

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/d3ac3e3c08cc459b4b42702a6e28312b13cae15b.temp

Filesize
2KB

MD5
75a9b058f99985d308655245ae3f7801

SHA1
9e01935dd8e3a024781397c812644d1b2745b7d1

SHA256
5b1d8851cb30cc8445904d829099f11b54ef319e2ae514337cc23e804c48a119

SHA512
0eb721ed60ac47cb93c057a2287f8656b7fc0629fee31a9efe9d2d0c7675c880e732229fa468348deadba3e6ee4c57135e6d32bd582dd88f6ba795ac1dcf8f1a

Download Submit
/data/data/com.mycompany.mercadopago/code_cache/flutter_engine/2a3401c9bbb5a9a9aec74d4f735d18a9dd3ebf2d/skia/0d31aa1f49cb8cfd790c44d92a9a023839524865/ecaa62f6586732104487f24882767421a9f31bea.temp

Filesize
2KB

MD5
37daea2e0c434fde7557968bfe08b68e

SHA1
4e7e47853b26bd8269ba66c7d23fdd553b4aec41

SHA256
4eca7c6378b8b8990a30ab8ef51f2b459b49b15589c3f64126f7732433d6d086

SHA512
e7db5e62d906149323f22cbeba4d237e4fff4afa538afb4c8e7301d9833cbca99d57e3c1ed034b26b8a91fc20e2f5f8aab88eb5a55153d77c8cd2225e73c3bad

Download Submit
/data/data/com.mycompany.mercadopago/files/Montserrat_300_f2da1f24cd3300139663bd8b828809c25700943a88fa1330c2ec60b93d13d32a.ttf

Filesize
107KB

MD5
5d968ec9b09ddcfe2d3de01dd797ae2c

SHA1
ec3962de6c970208b53bcc1691fe5771f8e2e677

SHA256
f2da1f24cd3300139663bd8b828809c25700943a88fa1330c2ec60b93d13d32a

SHA512
916a317b9d0b5385851c576b55061d1011eec733241db255e1e9466cf24718b49f7c0d296d4db1bc3aeaf812801bc20d831227db1b029b65a078d576345b9a23

Download Submit
/data/data/com.mycompany.mercadopago/files/Montserrat_600_8e6054fb3d10f2d6b06d5dbe122f21731b6656b66991d3dea8ddbfe9ed25fcd6.ttf

Filesize
107KB

MD5
e2dc7dd6952e43436e1700034815cd19

SHA1
cb6b2a8e9e661ddd2e0fc42b6dcedf1b503fc350

SHA256
8e6054fb3d10f2d6b06d5dbe122f21731b6656b66991d3dea8ddbfe9ed25fcd6

SHA512
c95c69e8c581623145323e4a45b37400a1a0cbfb66a095359c90bf29dcc6e4b476b81fca88e79aee32205cfde85bae0061595f08e121e62a617bdfa49bd78b01

Download Submit
/system_ext/framework/androidx.window.extensions.jar

Filesize
123KB

MD5
3056e1bdb7d4e19789d0319eff484bd0

SHA1
6791ae47aa9466fe0bca27ad6643f846853bbee4

SHA256
8e6331a07c9f2ac139214c527dcaff2c82d126bbe7bd3420cdc36d6a8c9204b0

SHA512
c790980fd68d9f89e32743bc28846807d5e5947c555f494de47714dec5cbd0c08d81c3260fa463759d1b17a953af3c44ec30b14fb08bf6b29db3837346c9f658

Download Submit
/system_ext/framework/androidx.window.sidecar.jar

Filesize
25KB

MD5
29469324e59dfcc052f24b5af4e7b2c4

SHA1
10c1e17ac6f598037bb51baa07945663645de4eb

SHA256
9195dc6a1c75a841384050240dfc972e48178964993fba6619788625f4b40d1a

SHA512
5e27c2b1431369a248298f2f749136a575005584f9999f2a4c204a0c47adce2e33c8df9f058bdafa1bde1c99e46d175560cedfcddcd8581718ed1d9973c37cc2

Download Submit