ir.siqe.holo.MainActivity
android.intent.action.MAIN
General
-
Target
a8c213e17f438cf39ce2c9000a4db74a7fa16f640c44ea7ebe8d533a687f2889
-
Size
2.7MB
-
MD5
6239a358904cb63718c1f76c99280ea4
-
SHA1
87c4eaa564e058ae40b8c640ac43722937543759
-
SHA256
a8c213e17f438cf39ce2c9000a4db74a7fa16f640c44ea7ebe8d533a687f2889
-
SHA512
b0fbb518331829e952ff545eed989ac79c30c9b868decd289763fb8176ed9c7310d28765919435810623974bab32d3f78a58ae9dff07ae56fff60c00b320b137
-
SSDEEP
49152:DPvgeuhYiTlUSWP9D9rQl7zJ4MRL+7zZBZugw+qFTpnM7zN5FTpnM7chBFTpnM7g:zvgNh7TlUSWP9JrQlzJ4w+hjtwP3nM7x
Score
10/10
Malware Config
Extracted
Family
irata
C2
http://Saman-sana.tk/your-code
https://irq-shapark.cf/SmsRequest.php?phone=
Signatures
-
Irata family
-
Requests dangerous framework permissions 2 IoCs
Files
-
a8c213e17f438cf39ce2c9000a4db74a7fa16f640c44ea7ebe8d533a687f2889
realrat.siqe.holo
ir.siqe.holo.MainActivity
Android Permissions
a8c213e17f438cf39ce2c9000a4db74a7fa16f640c44ea7ebe8d533a687f2889
Permissions
android.permission.INTERNET
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_SMS
android.permission.READ_SMS