.main
android.intent.action.MAIN
General
-
Target
NEAS.bc70243d50f349b855c01e913970ebd1a865f9d2b518597d15dd74c1a432f9eb.apk
-
Size
2.6MB
-
MD5
f33d5d47d6d5b62e6d1beeb6496172af
-
SHA1
8b1cd09a06ae95592dabd8e69972bd28343a633d
-
SHA256
bc70243d50f349b855c01e913970ebd1a865f9d2b518597d15dd74c1a432f9eb
-
SHA512
72c03143b6559ff34549cb10624593365a06f4a20e48f5f1da163dce68afcffdcd2b5f4c90274ca2cb820564a2ee71f95daab0cd9eef44c2a015ef7e211647cc
-
SSDEEP
49152:HzFOp/cBT2DN3cycC7mhVlvZXukxOQgpWk9L53yJdT9cOuKo2qwUVmyc:TQp/cBT2B3pcC7mRmdzL5CJdTWr87
Score
10/10
Malware Config
Signatures
-
Irata family
-
Irata payload 2 IoCs
-
Requests dangerous framework permissions 5 IoCs
Files
-
NEAS.bc70243d50f349b855c01e913970ebd1a865f9d2b518597d15dd74c1a432f9eb.apk
diwix.gorbah.com
.main
-
layout.bal
-
main.bal
-
port.txt
Android Permissions
NEAS.bc70243d50f349b855c01e913970ebd1a865f9d2b518597d15dd74c1a432f9eb.apk
Permissions
diwix.gorbah.com.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
android.permission.INTERNET
android.permission.READ_SMS
android.permission.VIBRATE
android.permission.POST_NOTIFICATIONS
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
android.permission.ACCESS_NETWORK_STATE
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
diwix.gorbah.com.permission.C2D_MESSAGE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.READ_CONTACTS