.main
android.intent.action.MAIN
General
-
Target
app.apk
-
Size
2.1MB
-
MD5
eb3172d644ce7672ef642281ed4dfbd2
-
SHA1
ce3f68090ed8907f57d6078e9d23486e5db75a3e
-
SHA256
35dd1004737fb01787411a6f527132ee2a05dfaedbb2a3e4d2bd982ad3bfdc4c
-
SHA512
1afb34a1a68d61f579e23f1fbfac6d168686f36e5c4acba0d4a7371dde8d94df9c85bdd50772a9509350a58c58744b6038a5c64c84991325564b336a6d599606
-
SSDEEP
49152:qRjilZVjRGZwHANQI4i9ER/87Y1lg+4BUrFKIpyPA2JvRjcOb:qCFmwH3i9EyYnaUlpyo2JVD
Score
10/10
Malware Config
Signatures
-
Irata family
-
Irata payload 1 IoCs
-
Requests dangerous framework permissions 4 IoCs
Files
-
app.apk
com.MrXnxVip.global
.main
-
layout.bal
-
port.txt
Android Permissions
app.apk
Permissions
com.MrXnxVip.global.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
android.permission.INTERNET
android.permission.READ_SMS
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.POST_NOTIFICATIONS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
android.permission.ACCESS_NETWORK_STATE
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
com.MrXnxVip.global.permission.C2D_MESSAGE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.ACCESS_WIFI_STATE