Overview

overview

10

Static

static

10

5fd1d278ee...0b.apk

android-9-x86

7

5fd1d278ee...0b.apk

android-10-x64

7

5fd1d278ee...0b.apk

android-11-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1080820bb568b794590f79fd4d7e8d32.bin

  • Size

    2.7MB

  • MD5

    e75d2ec51db540fee572846f5fbb22d4

  • SHA1

    20a8ff82e8746ac16e4471e5b7e9cac04e082469

  • SHA256

    37e0063d8dc4ba3ad907541c4b01ee94204585953c395f0217aaa876e42ce327

  • SHA512

    dc81dd8846df4a8afe4d0fc72c79ec246f479dd385759a6e4c508f6655d7937341d0377f69ac4f3304b6f97b5f60a1c71b3b9795123d7810952579457dc48e89

  • SSDEEP

    49152:TsRtbMWxXew5S89sihjjSR/VzMj6TKEK2V+dNeAUAU9WW:TsRtblXF2Ejjk9zM+86+3e9WW

Score
10/10
irata

Malware Config

Signatures

  • Irata family
    irata
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 6 IoCs

Files

  • 1080820bb568b794590f79fd4d7e8d32.bin
    .zip

    Password: infected

  • 5fd1d278ee2551f9d6765ac5f23c09004e43d970b2af2cd44d81632802b4a40b.apk
    .apk android

    Password: infected

    vip.app.com

    .main


  • layout.bal
  • port.txt