com.google.firebase.auth.internal.GenericIdpActivity
android.intent.action.VIEW
com.google.firebase.auth.internal.RecaptchaActivity
android.intent.action.VIEW
.main
android.intent.action.MAIN
General
-
Target
NEAS.5fd1d278ee2551f9d6765ac5f23c09004e43d970b2af2cd44d81632802b4a40b.apk
-
Size
2.9MB
-
MD5
1080820bb568b794590f79fd4d7e8d32
-
SHA1
3771a65936c62b06bdee8e3f213dfaea24ca2b6c
-
SHA256
5fd1d278ee2551f9d6765ac5f23c09004e43d970b2af2cd44d81632802b4a40b
-
SHA512
cbaed91924db1f4ce549d3b33968a168df309cf628be51aacfd44349cf7221d553a4adaa3bbd3235aaf1422aed65d0604f62cda72556b797a0e93ca42a412157
-
SSDEEP
49152:2/6EtdYTj5QSULAeZhEZEAJGH24ESDh1xpjxBhp54XpXupREJFwfMdZFFAVWrACQ:M69Tj5QSUkYhWTGrnpjxcts+F22FAVOQ
Score
10/10
Malware Config
Signatures
-
Irata family
-
Irata payload 1 IoCs
-
Requests dangerous framework permissions 6 IoCs
Files
-
NEAS.5fd1d278ee2551f9d6765ac5f23c09004e43d970b2af2cd44d81632802b4a40b.apk
vip.app.com
.main
-
layout.bal
-
port.txt
Android Permissions
NEAS.5fd1d278ee2551f9d6765ac5f23c09004e43d970b2af2cd44d81632802b4a40b.apk
Permissions
vip.app.com.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
android.permission.INTERNET
android.permission.READ_SMS
android.permission.VIBRATE
android.permission.POST_NOTIFICATIONS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.FOREGROUND_SERVICE
android.permission.ACCESS_NETWORK_STATE
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
vip.app.com.permission.C2D_MESSAGE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.SCHEDULE_EXACT_ALARM
android.permission.RECEIVE_SMS
android.permission.READ_PHONE_STATE
android.permission.CALL_PHONE
android.permission.CHANGE_NETWORK_STATE
android.permission.SEND_SMS