General

  • Target

    8a6fdfcd31165b213ea79f5d67162fdf504bf47641faabb8b2dd1ac636afc6b8

  • Size

    1.9MB

  • MD5

    43b37572ea7debe94c370c8c9a95d3b0

  • SHA1

    05f4804ab9e850750aee5aa81945345e847e0ca7

  • SHA256

    8a6fdfcd31165b213ea79f5d67162fdf504bf47641faabb8b2dd1ac636afc6b8

  • SHA512

    da806793b25cdd93e6e9dbf1cfeb745c44781cad816aa88d8702d6183bbb41059196a17cfee38e173a018e6341d20ed734896a3e63f1fbb3d457b23d6b3a4b4d

  • SSDEEP

    49152:XwFfdwgkQzlr5i937YXmW0q+WO48RBsOApYItTGTw+l:XwFfrk+lrMrYXmWPR4B+9SEs

Score
10/10

Malware Config

Signatures

  • Irata family
  • Irata payload 2 IoCs
  • Requests dangerous framework permissions 4 IoCs

Files

  • 8a6fdfcd31165b213ea79f5d67162fdf504bf47641faabb8b2dd1ac636afc6b8
    .apk android

    com.psiphon85

    .main


Android Permissions

8a6fdfcd31165b213ea79f5d67162fdf504bf47641faabb8b2dd1ac636afc6b8

Permissions

android.permission.INTERNET

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.WAKE_LOCK

android.permission.ACCESS_NETWORK_STATE

com.google.android.c2dm.permission.RECEIVE

com.psiphon85.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.ACCESS_WIFI_STATE

android.permission.RECEIVE_SMS

android.permission.READ_CONTACTS