153d5d69a3c27d3eb0b8e1de51a178895cd8eb56dcf0dd8b87caee6a917b3e93

Analysis

max time kernel
121s
max time network
156s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
28/03/2025, 16:28

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Internet Ilimitado Gratis.apk
Size

1.4MB
MD5

1b7c4403eb47f39e041c28de1c21858a
SHA1

8ab1e8c4a904f92d5aec4880c5a4bc38e0102abf
SHA256

153d5d69a3c27d3eb0b8e1de51a178895cd8eb56dcf0dd8b87caee6a917b3e93
SHA512

26513859ffe9d5b929dbbedaf413ee20c948c2f2462127bc811b0942c549106f6ddf7eec7634608f7d51fd4d5bfa650c2aa2028fa36c26b481527e6c9db73381
SSDEEP

24576:8yIzSBTPtLiLe3r7JpOdTlhPS+dVlQ6c9S3MyZnNOVoGGwulP8d4AXG4h:86r5i63rnSlM+dVlV2GnNOVYls4AW4h

Score

8^/10

defense_evasion discovery execution persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 8 IoCs

defense_evasion

System Information Discovery

T1426

ioc	Process
/data/local/bin/su	internet.ilimitado.fresa
/sbin/su	internet.ilimitado.fresa
/system/sd/xbin/su	internet.ilimitado.fresa
/data/local/su	internet.ilimitado.fresa
/data/local/xbin/su	internet.ilimitado.fresa
/system/bin/su	internet.ilimitado.fresa
/system/bin/failsafe/su	internet.ilimitado.fresa
/system/xbin/su	internet.ilimitado.fresa

Checks known Qemu pipes. 1 TTPs 2 IoCs

Checks for known pipes used by the Android emulator to communicate with the host.

defense_evasion

System Checks

T1633.001

ioc	Process
/dev/socket/qemud	internet.ilimitado.fresa
/dev/qemu_pipe	internet.ilimitado.fresa

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	internet.ilimitado.fresa

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	internet.ilimitado.fresa

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	internet.ilimitado.fresa

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	internet.ilimitado.fresa

Schedules tasks to execute at a specified time 1 TTPs 1 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

Scheduled Task/Job

T1603

description	ioc	Process
Framework service call	android.app.job.IJobScheduler.schedule	internet.ilimitado.fresa

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	internet.ilimitado.fresa

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	internet.ilimitado.fresa

internet.ilimitado.fresa
1⤵
- Checks if the Android device is rooted.
- Checks known Qemu pipes.
- Queries information about running processes on the device
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Schedules tasks to execute at a specified time
- Checks CPU information
- Checks memory information
PID:4215

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

T1603

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Scheduled Task/Job

T1603

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/internet.ilimitado.fresa/databases/StartApp-d6864f2502af7851

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/internet.ilimitado.fresa/databases/StartApp-d6864f2502af7851-journal

Filesize
512B

MD5
977c6bed6cfce6b5d1ed9feb93d52be6

SHA1
6e799c83133d02646fbfd4a4715d2f6aa9f612a8

SHA256
bdae401587f5b4c116974aff1263c08f4ea78f55d5630cd314f034c357ad39ad

SHA512
46ce2122747bbc4aa66ac47ed1975e6b2330c1783baf434d08ae8af687f3f1c5fe7277ec62a502b46b71370638081c01e5d67bcddb0d591734cbf7cd2757dd12

Download Submit
/data/data/internet.ilimitado.fresa/databases/StartApp-d6864f2502af7851-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/internet.ilimitado.fresa/databases/StartApp-d6864f2502af7851-wal

Filesize
64KB

MD5
8adf024dbe7415cf1275d78969a8e5b2

SHA1
d31456972a599116e823499d19bf1efcf6cf776a

SHA256
a82a0b607ec0dd4dbb72418523e48cb3d703d202a464a0db7d7aadbaaba2a339

SHA512
01113c4893123c03594ca85281bbfad7cef04c66cf5e3790d36dfc47c012f37b9d585813bc4b156d01d81c0fb719c74a5564fd5897a7527fac47167d982dcf47

Download Submit
/data/data/internet.ilimitado.fresa/files/StartappAdInfoMetadata

Filesize
1KB

MD5
3bab6616fab3773976f12395c057d6c2

SHA1
a3c4014364b4617c84c543eb1b88f2d557850495

SHA256
be190decba5dad48371b00de0e84456d043b04ae45523445d81f417c40f4f50d

SHA512
3c411d8a5a64b09c49cae6b40222f642c26110cd5aa6c08f8ec9dcc82a22a9cf5b73090ea4bed73abcd2b3f8c29b61777d67f9161e8733d2564548e49e6dc560

Download Submit
/data/data/internet.ilimitado.fresa/files/StartappAdsMetadata

Filesize
2KB

MD5
b762887a50597a1272cd98413d3a4037

SHA1
91a0e36231552489ffefb30d214ac1da2a56fdc4

SHA256
7b073211b33c5c08d95501fc0cae57687478078adc494a5c22cd3dc3147786bc

SHA512
ce5c3efdf6f3c59438c260747124ef1b1479f0ef81972c1151c4b114677715e4c2456be4d282d495659a97d971f6d1d175ad0e0fb979d3950427b95efeb4c156

Download Submit
/data/data/internet.ilimitado.fresa/files/StartappBannerMetadata

Filesize
750B

MD5
ac37e0d458007ace48a16ce49410991d

SHA1
72b614009e1a1d7c581eecd2c87c2d9f1b59aa20

SHA256
2f0985558106deb7e6fcfd44c35e7505b7905b1520cfcf3bbd7a125951acea4f

SHA512
fc58eb4301d47770bf524631118aebb722d7a4d9ba00275fab4a77d54ca24e4eaa8d2f99ffe3494fff77ffc4309e42d05cd70ddd7d3c48312db2567a9cbd2e5c

Download Submit
/data/data/internet.ilimitado.fresa/files/StartappCacheMetadata

Filesize
785B

MD5
6fc36f229b90713610a5bffd380c1fef

SHA1
d977af4885cabca9e6f18e332e684df6624659e4

SHA256
27e40d8f16ce1c4f7722e13646998d4490c47c053ac9d241dcfa09c5cd28e8f8

SHA512
dac519127b378ae05c1986678ce07358aeeff874089050630ca2842b343c0955a766cf47187ab943a26062fc949e3e326f3a32cad010bc3e870f52ba62a20baf

Download Submit
/data/data/internet.ilimitado.fresa/files/StartappMetadata

Filesize
9KB

MD5
b8e7d707fdd4ca8148d721e7041c93c2

SHA1
1296a47a52ca90bb6b283fa0ff421b233449144d

SHA256
c22e5b84a5317183fe482169336c44ae7a4b88953f7831f4df7bd84fd380c434

SHA512
4513bbbbdf3f403b41f9f19637ffee1ba3011b6d8d00f6a49d8f836db476ca8ce53304f88f8bda58779ea19cfd20c3f8c132432e28f33c22adfea4ca0a7e08bf

Download Submit
/data/data/internet.ilimitado.fresa/files/StartappSplashMetadata

Filesize
1KB

MD5
79bd60b7c1af3cf536d2023fbc18f35f

SHA1
69096bede7e0c2800bdd9c3b576be3fa669bae11

SHA256
e907619ec2cccd733cf569d34a9b45e12528c1e55b7c63bbd15bf0d4600acb3e

SHA512
cb46814f0bdac227e64827314b030dffedeeaf337e153d265b8205ddab4dfce54a04dd95d64adbe0e845a289c52d720b0a9fa05b6bd4fb346c6fc819f71032f9

Download Submit
/data/data/internet.ilimitado.fresa/files/back_.png

Filesize
1KB

MD5
527385c9a7dadd870919fb95ce4ff227

SHA1
a83ddb0ba89e4f83a07d6e0524d6ea900e800c2c

SHA256
3df2ccce7702c69051afd3fe66cf99e3f07e86d354956eba3888ddbaf545e717

SHA512
3b2f1781552f701331e91eb46fd38a982b2a9de8eb7259e912a710c63399fbe86fcdbe4c41fd8b8f34b99773a94cb02024e9ec64c38aeea68ef378de4f842355

Download Submit
/data/data/internet.ilimitado.fresa/files/back_dark.png

Filesize
1KB

MD5
74860bc33c04b72a4848a5d7b97bec5f

SHA1
336856eed4d49ebd0d429877822ac5781b4a18eb

SHA256
fb479f88bc809d106fc15c465079b19f6027a01ecbd0d79267147c0529adea69

SHA512
9b6993ba917c3a687b0df03deaf9e5e6ac41d3606ef148e259eb32de8c41203249063059a11bd598b860f2e3d795c73cd339c5325f80a2623745e7003f6586aa

Download Submit
/data/data/internet.ilimitado.fresa/files/browser_icon_dark.png

Filesize
1KB

MD5
c954c504c75c8ba2b112deb64869f78d

SHA1
5b594778f7a5bdac4e41de2d6c81225d5e329e0f

SHA256
37ee870f153d26b3956abcead4c45160b264fde6ca016bc2d330e9e36060ee46

SHA512
af1705681c3a2ef83427c853d310bc2dd6159f5db1c1b5a5740431a5a928b4c6541dcd5e3fcffd6c06697b87ca740a0ce2473e2cf141f21ee13730f325d4403b

Download Submit
/data/data/internet.ilimitado.fresa/files/close_button.png

Filesize
2KB

MD5
4d332a5c731fb506bb4644c91c38f5fc

SHA1
56fdadb5d38b29161910b3c89ce57b1aae67733a

SHA256
43e7ff284e786cced9a54218970d357ff06374836bc1791eb63d9bf26c6a3784

SHA512
c791b70329e32559d99f0259b38a832bc849768cab37973567a04fe8f66e9f5477136014ac17d16d1a0df0ca0f4fdad86d6a5f29581c85068b7979fb9e73b7c6

Download Submit
/data/data/internet.ilimitado.fresa/files/empty_star.png

Filesize
882B

MD5
136e73ffc6805e043bf61a12b3755b1a

SHA1
b7bd8ee6bd46f7bf3a2f21879e71ff4684e56361

SHA256
ecf9d2a4448842086066d82fecd6ec372497298bfef3c8e3fd17a97187a3e7bc

SHA512
62a12a8070955026e27e6c146d46bc44a345b0b4752e1c45487f06224e11c42490344b259ee6fe51fb6e9847cf4146abd7d4fbd0274d0f2c532868bc4be5d527

Download Submit
/data/data/internet.ilimitado.fresa/files/filled_star.png

Filesize
740B

MD5
4ef85932c17e863921c9bbdf1394fe92

SHA1
f3811986d3648be1ca89162a079aff4644fe26d7

SHA256
0d6e7d7a915944adfb498a45a6db96efc77d0112ba1f374461868e257315dfa3

SHA512
1ba7939efbd515f81333a155064e248de27b2c70cc71004136ab9d3c61ad34baab7f1d00529e1c78d4cdf11deddbad2376d27d5ab1af699a9d29c5b5da7f4db1

Download Submit
/data/data/internet.ilimitado.fresa/files/forward_.png

Filesize
1KB

MD5
795fe2fffc9505398b787eb2f15f440e

SHA1
c124812df2fbd8e4a65fb104aaab352ba300a57a

SHA256
976cb8c0c715b0b0e8b4769b51af1a08f06a4823d69b1f5284fec4531da21fb7

SHA512
c698c060692567afea47446d58d32e92b0bc922088c99e175f5125b264c20d425fe7dddc4b0d70fe9f53d41cfb87ef52965cd40934f21c9f5e2b9281dee72389

Download Submit
/data/data/internet.ilimitado.fresa/files/forward_dark.png

Filesize
1KB

MD5
ae1702688d33694b08e2f990527fd179

SHA1
fccea348af9e98608b152c1e35307d04a1cddeb1

SHA256
87916bc88b54b8602b2f43695d34b196b5cc8948ccb6576b24cced2feacb245f

SHA512
aa0aa7306867900ec765e0645e2666ae1a913fb1bc67ba205b3b80d1b37089bd8692c2b34fca233ed3bcfe89a42f095a375df787d5c29ced86bd040981110d2c

Download Submit
/data/data/internet.ilimitado.fresa/files/half_star.png

Filesize
881B

MD5
ba75be02cd7e410fa660a1783b0fff3c

SHA1
b5b60389112f5c6179878423c6c97eb5ab1680b4

SHA256
77a060cb9e3f9a5eb52654135d00106d36208f3d38878ca3b752ca1af85cf42d

SHA512
9985e466e1652eed843a9dd97832b8ee9bad05cd591a4b17548e876ac65c6cfa4da4f46e83dddf89f9fb1924d92dbf21ce13e66059d5cc7dbe0500cf0c0e7b0c

Download Submit
/data/data/internet.ilimitado.fresa/files/logo.png

Filesize
2KB

MD5
5f93b7b61e5bcf973fd93c049061023e

SHA1
7c154666967abc13d9d38c9b79eb6933db64566f

SHA256
4e537f889054c9f1dfb4b1a30c34ea180310dbc9b9bcc9123605f0f802a24557

SHA512
d96bb4c9daab3b2a72a3d82682a8f66ee85a0eb525a87afd13f46de949ee8a02d9a560da6584ecd658681c93a13df03d9a0f57382fdc40f56b2541a51e858a67

Download Submit
/data/data/internet.ilimitado.fresa/files/shared_prefs_sdk_ad_prefs

Filesize
5B

MD5
9dcf2a6f12095ecff342e9fa0c5ca72f

SHA1
c815f34691be353caa9de93bbdb00a31f62a9ed3

SHA256
4e68143408826326220a32d6bff59e1cca3dd85f74b018aebd6723c5686c54e5

SHA512
7ba3449f5ec3363bbee33d47abe471286cf78034dd70379fa4d0de5fd59215e8c58287eddffed1b9c3c74e157f6a9ad69b0c551001a62d04790bba49df48231c

Download Submit
/data/data/internet.ilimitado.fresa/files/x_dark.png

Filesize
663B

MD5
2e42562e9d02dafe67ac6404f58289b7

SHA1
c37072894b2169be2643dd5e541ff8dfccecebe2

SHA256
2f70939006596d2496c26284508e70ef260968eae1385c220e91e74b58e0d13a

SHA512
a65a9fff0c6e17c322d0f0d6e0233fcca6d701a331a0fbc7da7eb21474c11875bd0e3edafc6c1df248ba85f22fc47b403d5668316405adcd8f6e4907a893d3bf

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads