Overview

overview

10

Static

static

10

app.apk

android-9-x86

6

app.apk

android-10-x64

6

app.apk

android-11-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    app.apk

  • Size

    3.0MB

  • MD5

    9c72293e5e1b91d4dcab9f2c0cc4983e

  • SHA1

    b4f9898b4cf71fbbc52d05d645549ac9792c159a

  • SHA256

    d2c519f378a23cb9a912d7f405a0a391610373cd780087079e148f436afb9238

  • SHA512

    5041e33fca7183e08c9202bc827748be8783c7a6f39c2b637f4c2439d92b3ef08a435bc18c924c46c5f16ccf43e2b63262d2d5ada8645e251d7314a83f1c68c5

  • SSDEEP

    49152:N1xA2zYFMuHL0trBmgHPmibCd0fJL9Q8gwzu6WepM4T3vSus/Ip7f1bc:Ns/FMkwtrogHPtbkkJL5gwzlWedT311Q

Score
10/10
irata

Malware Config

Signatures

  • Irata family
    irata
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 6 IoCs

Files

  • app.apk
    .apk android

    com.lydia.route

    .main


  • getewayport.txt

Android Permissions

app.apk

Permissions

com.lydia.route.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.INTERNET

android.permission.VIBRATE

android.permission.POST_NOTIFICATIONS

android.permission.READ_SMS

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.ACCESS_NETWORK_STATE

com.google.android.c2dm.permission.RECEIVE

com.google.android.gms.permission.AD_ID

com.lydia.route.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.ACCESS_WIFI_STATE

android.permission.QUERY_ALL_PACKAGES

android.permission.ACCESS_NOTIFICATION_POLICY

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS