General

  • Target

    3d65434129914da7fee77b9ebea14146d19dc9a318b425632c93be2521b0d7e1_JC.apk

  • Size

    4.7MB

  • MD5

    42e72c04545383f1e810ca4d45d15cde

  • SHA1

    169e1f6f81377846f287b3fb767662cf8ff24d35

  • SHA256

    3d65434129914da7fee77b9ebea14146d19dc9a318b425632c93be2521b0d7e1

  • SHA512

    7a7b413864fdb608653765e68b192e86098d262b5b0d4468e1cda05688d43a1f218f9009de63a401af65e6c0339494c90914dcdf9656ba10b99c9891a1ea948c

  • SSDEEP

    98304:8a0a4+MN8gLCrgDJsMsnn+hB/euTKzWcAI3:8a14+YLJsxKTKd

Score
10/10

Malware Config

Signatures

  • Irata family
  • Requests dangerous framework permissions 7 IoCs

Files

  • 3d65434129914da7fee77b9ebea14146d19dc9a318b425632c93be2521b0d7e1_JC.apk
    .apk android arch:arm arch:x86 arch:arm64 arch:x64

    com.drnull.v3

    com.drnull.v3.MainActivity


  • baseline.prof
  • baseline.profm
  • chat_id.txt

Android Permissions

3d65434129914da7fee77b9ebea14146d19dc9a318b425632c93be2521b0d7e1_JC.apk

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.POST_NOTIFICATIONS

android.permission.START_FOREGROUND_SERVICES_FROM_BACKGROUND

android.permission.FOREGROUND_SERVICE

android.permission.WAKE_LOCK

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.READ_CONTACTS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

com.google.android.c2dm.permission.RECEIVE

com.google.android.gms.permission.AD_ID

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.drnull.v3.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION