Overview

overview

10

Static

static

10

saham.apk

android-9-x86

6

saham.apk

android-10-x64

6

saham.apk

android-11-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    saham.apk

  • Size

    1.7MB

  • MD5

    f48f4fe1fd86912c46587acd1c1cf02a

  • SHA1

    21280e8c73d0098a76452970796844e690e018a2

  • SHA256

    93176edb58ad0e8f9b7a4611724d54abefb47df2605b64f0c334554c97c1e169

  • SHA512

    d6a7316b4b3adb183e5e8d50a295a698d2f606de1e96ce1725840f89d0a689099c95d1b5e3da1d0275ae4d94c2c45ef9e85ef97edb300ea94a712f4a6f0ec29b

  • SSDEEP

    49152:qsgkkU0XYyqrOai34nX87OsurohGQ/P4HZMIng:kkkDXZSi3S8720NnG5g

Score
10/10
irata

Malware Config

Signatures

  • Irata family
    irata
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 6 IoCs

Files

  • saham.apk
    .apk android

    com.lyufo.play

    .main


  • pu.txt

Android Permissions

saham.apk

Permissions

com.lyufo.play.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.INTERNET

android.permission.VIBRATE

android.permission.POST_NOTIFICATIONS

android.permission.READ_SMS

android.permission.FOREGROUND_SERVICE

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_NETWORK_STATE

com.google.android.c2dm.permission.RECEIVE

com.google.android.gms.permission.AD_ID

com.lyufo.play.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.ACCESS_WIFI_STATE

android.permission.QUERY_ALL_PACKAGES

android.permission.ACCESS_NOTIFICATION_POLICY

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS