ir.siqe.holo.MainActivity
android.intent.action.MAIN
General
-
Target
8171f2c9d268cf533b7bfc04eb5746b8a683b52fe4b4cbe9ee94b9d96dd3ca9d
-
Size
2.0MB
-
MD5
2b4b6e9f7fa5caef22b5337473e942a1
-
SHA1
787323ce816716e2d8ba1faf9e8d67e5e2e88906
-
SHA256
8171f2c9d268cf533b7bfc04eb5746b8a683b52fe4b4cbe9ee94b9d96dd3ca9d
-
SHA512
4c3f048a51c053388f396928e7594f9daee19577128750ae79d0ae4261574a5b577f44da258fce382b3cacad5269a4e6d8b7731e8ca90e29c35d17118b334044
-
SSDEEP
49152:0/OmCqZw3KKDobGvVTvy5VgxLjptUbsj+/vgN4X3j6mN:0/OmCqaKKDMG9jy5mxLLP+/vgNI3F
Score
10/10
Malware Config
Extracted
Family
irata
C2
https://cloudbaat.tk/data/2644/index.php
https://cloudbaat.tk/data/2644/sms5.php?phone=
Signatures
-
Irata family
-
Requests dangerous framework permissions 2 IoCs
Files
-
8171f2c9d268cf533b7bfc04eb5746b8a683b52fe4b4cbe9ee94b9d96dd3ca9d
Caco333.siqe.holo
ir.siqe.holo.MainActivity
Android Permissions
8171f2c9d268cf533b7bfc04eb5746b8a683b52fe4b4cbe9ee94b9d96dd3ca9d
Permissions
android.permission.INTERNET
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_SMS
android.permission.READ_SMS