Overview

overview

10

Static

static

10

91ea28d806...aa.apk

android-9-x86

7

91ea28d806...aa.apk

android-10-x64

7

91ea28d806...aa.apk

android-11-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    91ea28d806758f7f34c1f2b3eeb2607a09f32b145731a356dd5a0b52fe80ccaa.zip

  • Size

    2.5MB

  • MD5

    bb8dfb8973f4c8c5e836976dd19888d0

  • SHA1

    062fb90dc3fde10547e5d1b418fd48eb4887993e

  • SHA256

    821253b2d2a353a4ebc963589e8c8e76ef71e3708db77fa93ada1d8827d70715

  • SHA512

    97a4480e8883edcdbc58f4969ef36387ef4ad589fb9e2180e2a967ca7476178eae94d553915ebfe47e6d41cb8fcd4aaecabc2bf6b0aff76369ead2f4d3a9673e

  • SSDEEP

    49152:ctkSB+ntmqJMIDyvT2Y5a2w0d8MviwIquTgxr/JEeD3NRkJG1M:ctXBIkqD2B5a29d8MKZquTgv7NRy

Score
10/10
irata

Malware Config

Signatures

  • Irata family
    irata
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 4 IoCs

Files

  • 91ea28d806758f7f34c1f2b3eeb2607a09f32b145731a356dd5a0b52fe80ccaa.zip
    .zip

    Password: infected

  • 91ea28d806758f7f34c1f2b3eeb2607a09f32b145731a356dd5a0b52fe80ccaa.apk
    .apk android

    Password: infected

    vip.app.com

    .main


  • layout.bal
  • port.txt