General
-
Target
Vortex-1-1-9-10-1701767802.exe
-
Size
150.2MB
-
Sample
231220-gcg68shcc3
-
MD5
663a8df99d912c58e75cf338f6263dac
-
SHA1
2df05873362ba374345ec2eb5681f5f3d037089a
-
SHA256
b2ebfdc4ae44db1ef69dcaf7e18a128b8bdf945ea0a0657b62d08b912e5d2fad
-
SHA512
3f531b6974745fa3da0bf0e02f0706ae1176ec13175f3a8a1f773bb6c1f95bd761d7d3f27e94e44f2dcc2b202ecaabfb72d0948e26fe5cc521a737b88de69374
-
SSDEEP
3145728:6U9ft2GB6Yd3NY9Diaf5Qzf5+AugMrVPqCqlEbW96FNGAckBB/cG8dPD:wGv3NY9Di05Q75+AugWqCqlzNAck7/cl
Static task
static1
Behavioral task
behavioral1
Sample
Vortex-1-1-9-10-1701767802.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
Vortex-1-1-9-10-1701767802.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
Vortex-1-1-9-10-1701767802.exe
-
Size
150.2MB
-
MD5
663a8df99d912c58e75cf338f6263dac
-
SHA1
2df05873362ba374345ec2eb5681f5f3d037089a
-
SHA256
b2ebfdc4ae44db1ef69dcaf7e18a128b8bdf945ea0a0657b62d08b912e5d2fad
-
SHA512
3f531b6974745fa3da0bf0e02f0706ae1176ec13175f3a8a1f773bb6c1f95bd761d7d3f27e94e44f2dcc2b202ecaabfb72d0948e26fe5cc521a737b88de69374
-
SSDEEP
3145728:6U9ft2GB6Yd3NY9Diaf5Qzf5+AugMrVPqCqlEbW96FNGAckBB/cG8dPD:wGv3NY9Di05Q75+AugWqCqlzNAck7/cl
Score10/10-
Irata
Irata is an Iranian remote access trojan Android malware first seen in August 2022.
-
Irata payload
-