Overview

overview

10

Static

static

10

مشاهد...ه.apk

android-9-x86

7

مشاهد...ه.apk

android-10-x64

6

مشاهد...ه.apk

android-11-x64

7

Resubmissions

22-09-2022 17:09

220922-vpajtafgdj 10

22-09-2022 17:07

220922-vm97nacab9 10

09-09-2022 08:04

220909-jx87kaggc5 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    مشاهده_ابلاغیه.apk

  • Size

    2.1MB

  • MD5

    d69fce686ca353b468ac1b2ed5becea5

  • SHA1

    8bbc66f16edaff7b989d4af6f9be1510012e002b

  • SHA256

    7b71bdbb48e1ad7fb26d112ea9289a951923b4fbf41b983edd0567b8b9f1661e

  • SHA512

    4d8ebe5b1fff7bc59bab1ed8c4a6571df91408f156c690462603641616ba03872e17697d0fa0f1144956c2484615ecf176a58b9f1433c361a68c165148e3d842

  • SSDEEP

    49152:MTiT1hXbMAIEa2kPdeCmyDR2//gZPr3ZC7ow2eR53qv:MmTjIfEaTPkCdRyiYEARW

Score
10/10
irata

Malware Config

Signatures

  • Irata family
    irata
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 8 IoCs

Files

  • مشاهده_ابلاغیه.apk
    .apk android

    ir.stop.devsalm

    .main


Android Permissions

مشاهده_ابلاغیه.apk

Permissions

android.permission.INTERNET

android.permission.WRITE_SETTINGS

android.permission.WAKE_LOCK

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.ACCESS_NETWORK_STATE

com.google.android.c2dm.permission.RECEIVE

ir.stop.devsalm.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.ACCESS_COARSE_LOCATION

android.permission.CHANGE_NETWORK_STATE

android.permission.WRITE_SETTINGS

android.permission.WRITE_SECURE_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_SMS

android.permission.READ_CONTACTS

android.permission.READ_CALL_LOG

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.ACCESS_BACKGROUND_LOCATION