General

  • Target

    Vortex-1-1-9-10-1701767802.exe

  • Size

    150.2MB

  • Sample

    231220-gcg68shcc3

  • MD5

    663a8df99d912c58e75cf338f6263dac

  • SHA1

    2df05873362ba374345ec2eb5681f5f3d037089a

  • SHA256

    b2ebfdc4ae44db1ef69dcaf7e18a128b8bdf945ea0a0657b62d08b912e5d2fad

  • SHA512

    3f531b6974745fa3da0bf0e02f0706ae1176ec13175f3a8a1f773bb6c1f95bd761d7d3f27e94e44f2dcc2b202ecaabfb72d0948e26fe5cc521a737b88de69374

  • SSDEEP

    3145728:6U9ft2GB6Yd3NY9Diaf5Qzf5+AugMrVPqCqlEbW96FNGAckBB/cG8dPD:wGv3NY9Di05Q75+AugWqCqlzNAck7/cl

Malware Config

Targets

    • Target

      Vortex-1-1-9-10-1701767802.exe

    • Size

      150.2MB

    • MD5

      663a8df99d912c58e75cf338f6263dac

    • SHA1

      2df05873362ba374345ec2eb5681f5f3d037089a

    • SHA256

      b2ebfdc4ae44db1ef69dcaf7e18a128b8bdf945ea0a0657b62d08b912e5d2fad

    • SHA512

      3f531b6974745fa3da0bf0e02f0706ae1176ec13175f3a8a1f773bb6c1f95bd761d7d3f27e94e44f2dcc2b202ecaabfb72d0948e26fe5cc521a737b88de69374

    • SSDEEP

      3145728:6U9ft2GB6Yd3NY9Diaf5Qzf5+AugMrVPqCqlEbW96FNGAckBB/cG8dPD:wGv3NY9Di05Q75+AugWqCqlzNAck7/cl

    • Irata

      Irata is an Iranian remote access trojan Android malware first seen in August 2022.

    • Irata payload

MITRE ATT&CK Enterprise v15

Tasks