Overview

overview

10

Static

static

10

b32606cadd...92.apk

android-9-x86

7

b32606cadd...92.apk

android-10-x64

7

b32606cadd...92.apk

android-11-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    deffffa79ef226801e8b1aafafd7bb7a.bin

  • Size

    2.8MB

  • MD5

    500496534d1cede77fa7ab56221213ce

  • SHA1

    239e42be3b6e9445fcb82f41444d7730cbee5dbb

  • SHA256

    26b9dce55df43f5fbe55783b1e73a428e1011a3399cb39bb3617e59a80126a42

  • SHA512

    b85958f3c5abb24fabaca9796c482196bdefa4531ef72f3c3382fd1744da14d5a29a696854c7ec19ffbf934012e739ff57fb022513bc237d7df0f69684c43d73

  • SSDEEP

    49152:zATSPCltWzB7uGpvWW/P/HD80PhoXiaIzggQ57nS0nKwDL2yRYFmDcKt6Qd2vvid:zAazT1P/HD8KO8r8SyDSyrDf4zvviUz0

Score
10/10
irata

Malware Config

Signatures

  • Irata family
    irata
  • Irata payload 2 IoCs
  • Requests dangerous framework permissions 8 IoCs

Files

  • deffffa79ef226801e8b1aafafd7bb7a.bin
    .zip

    Password: infected

  • b32606cadde96a5d29e1e8ced40a38dee111f59f65a9dda68fa0726c7e232792.apk
    .apk android

    Password: infected

    ir.shz.forosh

    .main


  • layout.bal
  • port.txt