General

  • Target

    490fbfd77392f27de0594a490f5c5572dda276c0d10656ef1074115af603ae1d

  • Size

    9.8MB

  • MD5

    f0ab02b24a5d53c924497372cb942257

  • SHA1

    7dc1ae3b196ce6b9dcbd7ea39c911200281e13ba

  • SHA256

    490fbfd77392f27de0594a490f5c5572dda276c0d10656ef1074115af603ae1d

  • SHA512

    98336708b057de8ad81ba9f8718b575049c1e18f5333908702dd157f4520953990e98be3b0fbba857e46519d3c8710baca62bf5cba74dd84ffb68bbd7ef4eeb9

  • SSDEEP

    196608:HJ2UUd2gIV+DrpZceNBJPOmstR7Sm5Fi3Rudy6cGo3eAYdXzZ3F:HJgd2gy5eNBJPONu6mQXzZ1

Score
10/10

Malware Config

Signatures

  • Irata family
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 1 IoCs

Files

  • 490fbfd77392f27de0594a490f5c5572dda276c0d10656ef1074115af603ae1d
    .apk android

    ir.iut.torshy

    .main


Android Permissions

490fbfd77392f27de0594a490f5c5572dda276c0d10656ef1074115af603ae1d

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.INTERNET

android.permission.VIBRATE

com.google.android.c2dm.permission.RECEIVE

android.permission.FOREGROUND_SERVICE

aandroid.permission.RECEIVE_BOOT_COMPLETED

ir.iut.torshy.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE