.main
android.intent.action.MAIN
General
-
Target
saham.apk
-
Size
2.6MB
-
MD5
e8d1dba8557e9cc05e776c98cb1d4487
-
SHA1
fd1d075c7096998cc8992d18f4f9df0c853130e2
-
SHA256
c3a9e6a732a84fe4b81b1baeae069ec493e06318fcd5e64292f1ff6cb1f1caa9
-
SHA512
4f8077ffedad1349a2ea8fb2c82293bec31a905c1f56ca19198cd293822850f21a4f4aec67687acf4400cb8f338a6c4bbd8cf2f8efcc3c0e04018f24b2c11dc8
-
SSDEEP
49152:AELNiEtX4NYWzTPueV9/o514d117ennUl1GlM5rlnUj2dbWP2wnVjHM/81:AQLtX4NYiT2+9e1k1xenUl1GazxWP2Uf
Score
10/10
Malware Config
Signatures
-
Irata family
-
Irata payload 1 IoCs
-
Requests dangerous framework permissions 4 IoCs
Files
-
saham.apk
vip.app.com
.main
-
layout.bal
-
port.txt
Android Permissions
saham.apk
Permissions
vip.app.com.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
android.permission.INTERNET
android.permission.READ_SMS
android.permission.VIBRATE
android.permission.POST_NOTIFICATIONS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.FOREGROUND_SERVICE
android.permission.ACCESS_NETWORK_STATE
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
vip.app.com.permission.C2D_MESSAGE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.ACCESS_WIFI_STATE