.main
android.intent.action.MAIN
General
-
Target
NEAS.5787b4aa630132d4557605851d767b4dc3d0b9d89f50d2c28f164c6ec6673ad2.apk
-
Size
2.6MB
-
MD5
c177c732235ccd9582f227bb17871189
-
SHA1
d4e961923d1b3761f17ada435b1d0f412ba8b385
-
SHA256
5787b4aa630132d4557605851d767b4dc3d0b9d89f50d2c28f164c6ec6673ad2
-
SHA512
63d57269773645c016fe6389ce3dff6228279e7003f19e67c070def008a673c30856089dd23d90ce1907df7a6446594fd825fa02a24714a7c386a5e46972de21
-
SSDEEP
49152:HBFOp/cBT2DN3cycC7mhVlvZXukxOQgpWk9L53yJdT9cOuKo2qwUVmyR:hQp/cBT2B3pcC7mRmdzL5CJdTWr8M
Score
10/10
Malware Config
Signatures
-
Irata family
-
Irata payload 2 IoCs
-
Requests dangerous framework permissions 5 IoCs
Files
-
NEAS.5787b4aa630132d4557605851d767b4dc3d0b9d89f50d2c28f164c6ec6673ad2.apk
diwix.gorbah.com
.main
-
layout.bal
-
main.bal
-
port.txt
Android Permissions
NEAS.5787b4aa630132d4557605851d767b4dc3d0b9d89f50d2c28f164c6ec6673ad2.apk
Permissions
diwix.gorbah.com.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
android.permission.INTERNET
android.permission.READ_SMS
android.permission.VIBRATE
android.permission.POST_NOTIFICATIONS
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
android.permission.ACCESS_NETWORK_STATE
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
diwix.gorbah.com.permission.C2D_MESSAGE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.READ_CONTACTS