ir.siqe.holo.MainActivity
android.intent.action.MAIN
General
-
Target
9672f9e8e6c538cbe8b3a38cb264ed651dc913a6375174e4a64eeaab731e5d38
-
Size
2.0MB
-
MD5
224f43439e1bfe185cf52529668ac1ea
-
SHA1
c89f2a8dc0ae4df90fd2f38bff733ba155ca0549
-
SHA256
9672f9e8e6c538cbe8b3a38cb264ed651dc913a6375174e4a64eeaab731e5d38
-
SHA512
905e82fb20d4f4ce7689927ab43228be0d486142867c5536ab05aff7456029d602a73304b0eb2eacbcd7ef1b1ffba739c21a552b51933fd4e6c1ae34a84d814e
-
SSDEEP
49152:lxnXW6KABSZrhMvlzYhCklEOdBsb4+j+bzZBZuwgOvjNqMhyM4px74uWjrS:XThBSZaNM04U+Bjdg2C
Score
10/10
Malware Config
Extracted
Family
irata
C2
https://ler-shaprak.ga/Chat/?e=43669
https://ler-shaprak.ga/SmsRequest.php?phone=
Signatures
-
Irata family
-
Requests dangerous framework permissions 2 IoCs
Files
-
9672f9e8e6c538cbe8b3a38cb264ed651dc913a6375174e4a64eeaab731e5d38
realrat.siqe.holo
ir.siqe.holo.MainActivity
Android Permissions
9672f9e8e6c538cbe8b3a38cb264ed651dc913a6375174e4a64eeaab731e5d38
Permissions
android.permission.INTERNET
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_SMS
android.permission.READ_SMS