ir.siqe.holo.MainActivity
android.intent.action.MAIN
General
-
Target
92234c3680c9f14154226e0128e7f60e42059d3751a7c7e846299a663dc6c94a
-
Size
4.5MB
-
MD5
e03759f2bf355c5f2168911c7f23c84e
-
SHA1
14525f95423b57fc79e7f937739095bea084b69b
-
SHA256
92234c3680c9f14154226e0128e7f60e42059d3751a7c7e846299a663dc6c94a
-
SHA512
d6a96362a81caf1766a5aa0053c2e9bdf69868bb1e5e6ef8074a3008b266721eb99b8e2c56604bff92e95dd2ce35d5a04c5043015e56493255d08a1d2f000aee
-
SSDEEP
98304:MToedUgaxcP/Gjcg5apbTdsapbTdcapbTdSapbTdTapbTdBapbTdiapbTdjapbTQ:MToedU9cP/SyTdTxTnTwTOTrToTOTKTA
Score
10/10
Malware Config
Extracted
Family
irata
C2
https://internet-meli-24.ga/sighe
https://internet-meli-24.ga/sirat/ratsms.php?phone=
Signatures
-
Irata family
-
Requests dangerous framework permissions 2 IoCs
Files
-
92234c3680c9f14154226e0128e7f60e42059d3751a7c7e846299a663dc6c94a
realrat.siqe.holo
ir.siqe.holo.MainActivity
Android Permissions
92234c3680c9f14154226e0128e7f60e42059d3751a7c7e846299a663dc6c94a
Permissions
android.permission.INTERNET
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_SMS
android.permission.READ_SMS