General

  • Target

    79192acfdd193bed6d337cf3cb504303c967011425f7c9b54e0043bc3d68f653.zip

  • Size

    2.0MB

  • MD5

    ed749697b940dec410217385f2507d6f

  • SHA1

    4238e0e9a8f926e02642fb5890a6d80bc3e23290

  • SHA256

    3a1721723bd289df54254f388aad06b07c723dab22425ac7ecb6cf86ebaf5da5

  • SHA512

    9b43772b18a2e934a580296fe991653c69b5f4a56fc91956f33d6b4c44169c182ab3dafcfd710f817e41c36bf7b1409451eb22825541c827e5eff031e31f64e5

  • SSDEEP

    49152:cFIGfpmoxJGPdxvgJcT/zPizaVXEcqNs7ZIATAf:WxJexGcT/zKcqNs7ZIATAf

Score
10/10

Malware Config

Signatures

  • Irata family
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 4 IoCs

Files

  • 79192acfdd193bed6d337cf3cb504303c967011425f7c9b54e0043bc3d68f653.zip
    .zip

    Password: infected

  • 79192acfdd193bed6d337cf3cb504303c967011425f7c9b54e0043bc3d68f653.apk
    .apk android

    Password: infected

    com.MrXnxVip.global

    .main


  • layout.bal
  • port.txt