General

  • Target

    92aa60b1b2c69cb462c519d23ac2ed2e47707a32adcac7a9feb62449c88910a3

  • Size

    2.1MB

  • MD5

    0cff13d2f2522b9a6bbc25026f418d80

  • SHA1

    6e12217939abee5e22190d34a56dfe344c48f168

  • SHA256

    92aa60b1b2c69cb462c519d23ac2ed2e47707a32adcac7a9feb62449c88910a3

  • SHA512

    d43df4f752d6d285c20bb66317da1e307037f47fdad1bee572256f5b645e34eb6a856c3a04802b89f6334a2d7586f7a949dca38d69c8bc17ce121b40e4b640d8

  • SSDEEP

    49152:h/UUFUd1bI0rnN6deC+QAEO2Y4st+a+/c+8ShznEaKm:pDFD0bUwXQ3DYft+bk+8mzndKm

Score
10/10

Malware Config

Signatures

  • Irata family
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 7 IoCs

Files

  • 92aa60b1b2c69cb462c519d23ac2ed2e47707a32adcac7a9feb62449c88910a3
    .apk android

    com.psiphon3

    .main


Android Permissions

92aa60b1b2c69cb462c519d23ac2ed2e47707a32adcac7a9feb62449c88910a3

Permissions

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.ACCESS_NETWORK_STATE

com.google.android.c2dm.permission.RECEIVE

com.psiphon3.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.ACCESS_COARSE_LOCATION

android.permission.CHANGE_NETWORK_STATE

android.permission.ACCESS_COARSE_UPDATES

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_SMS

android.permission.READ_CONTACTS

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.ACCESS_BACKGROUND_LOCATION