General

  • Target

    6d61844ed0f9935e83a914de327b5a6cd17564ae7b4fc0d53d16fb63abac482e

  • Size

    1.9MB

  • MD5

    718ce79d25ca660540199e1bc0761d50

  • SHA1

    2136206845fd32f27a502f2cdb064387a7d51726

  • SHA256

    6d61844ed0f9935e83a914de327b5a6cd17564ae7b4fc0d53d16fb63abac482e

  • SHA512

    9832118918b90b5df8b18fa936189858da8e6e9906519461d673e1556be6f0f80b887c8563ec8600fde541947dd9cb4748a5267a4b4b4b9fe8c03954a64bde6d

  • SSDEEP

    49152:LXEZGNWyfqXqcZk3icS97xFKyB64P3UPxHnOLDEPoglMIvbTdpBvlg1:A0NWEq6cCScS78yB7cpHnO/u/lMIjTA1

Score
10/10

Malware Config

Signatures

  • Irata family
  • Irata payload 2 IoCs
  • Requests dangerous framework permissions 4 IoCs

Files

  • 6d61844ed0f9935e83a914de327b5a6cd17564ae7b4fc0d53d16fb63abac482e
    .apk android

    com.Pesarbad.p

    .main


Android Permissions

6d61844ed0f9935e83a914de327b5a6cd17564ae7b4fc0d53d16fb63abac482e

Permissions

android.permission.INTERNET

android.permission.READ_SMS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.WAKE_LOCK

android.permission.ACCESS_NETWORK_STATE

com.google.android.c2dm.permission.RECEIVE

com.Pesarbad.p.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.SEND_SMS

android.permission.ACCESS_WIFI_STATE

android.permission.RECEIVE_SMS

android.permission.READ_CONTACTS