Overview

overview

10

Static

static

10

saham.apk

android-9-x86

7

saham.apk

android-10-x64

6

saham.apk

android-11-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    saham.apk

  • Size

    3.0MB

  • MD5

    e68e3e7462d78cdb5db6e5c7265cc433

  • SHA1

    c8b8e5e7e06c3648b7e2a8ece87836c40044585c

  • SHA256

    05093b228815d9cdac1971955991995bc2894b5c43673bd05b000b76dd7e19aa

  • SHA512

    f38242223c4b8a4ffc54d9892c8297c3c355de16d03996688af95c2120c7c7a2ef0d128b793b123ef3c17a2360a64f298f1d4810e5f51e6f60463c461226b2c6

  • SSDEEP

    49152:Hdg7Dxe0GSObpnToOKjuHiJo9qaW7IFMZTGUfrl7x9nSKZHJUrVpNm4s/Ip7f1f:Hdg7D0bpToOiJo9RW7HZTxfrBSKuVpdt

Score
10/10
irata

Malware Config

Signatures

  • Irata family
    irata
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 4 IoCs

Files

  • saham.apk
    .apk android

    com.lydia.route

    .main


  • getewayport.txt

Android Permissions

saham.apk

Permissions

com.lydia.route.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.INTERNET

android.permission.VIBRATE

android.permission.POST_NOTIFICATIONS

android.permission.READ_SMS

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.ACCESS_NETWORK_STATE

com.google.android.c2dm.permission.RECEIVE

com.google.android.gms.permission.AD_ID

com.lydia.route.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.ACCESS_WIFI_STATE

android.permission.QUERY_ALL_PACKAGES

android.permission.ACCESS_NOTIFICATION_POLICY