General

  • Target

    saham.apk

  • Size

    2.6MB

  • MD5

    233b3cf65a3c1d27b784f3add3db66cb

  • SHA1

    a88ae63e9595090995343f8101d2d21d3b00b1d8

  • SHA256

    06d349d201e9a3b273124c31100b68949a1d0765b7f48555025974be2634d4db

  • SHA512

    047598ccaa3c93c68005970f4dc9c6599ecdf1b7c7c7f91f8edd05a0f8fd33a162e83ce2f147e0594191e84a8fe698413ee9b74c882f086f2aac492d1eb009fa

  • SSDEEP

    49152:o/10GyQn6l+1l+O6hLXleHt2Q/vg9oGqaCm5ottnQc18rHq0TjSAHhqfre8FPHD:2CGyl+1p6hW2wUoGqaCdjN18DJqAHhId

Score
10/10

Malware Config

Signatures

  • Irata family
  • Irata payload 2 IoCs
  • Requests dangerous framework permissions 8 IoCs

Files

  • saham.apk
    .apk android

    com.api.test

    .main


  • folder.txt
  • lmain.bal

Android Permissions

saham.apk

Permissions

com.api.test.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.INTERNET

android.permission.CALL_PHONE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECORD_AUDIO

android.permission.READ_CONTACTS

android.permission.READ_CALL_LOG

android.permission.READ_SMS

android.permission.VIBRATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.FOREGROUND_SERVICE

android.permission.ACCESS_NETWORK_STATE

com.google.android.c2dm.permission.RECEIVE

com.google.android.gms.permission.AD_ID

com.api.test.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.REQUEST_DELETE_PACKAGES

android.permission.DELETE_PACKAGES

android.permission.ACCESS_NOTIFICATION_POLICY

android.permission.ACCESS_WIFI_STATE

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.