General

  • Target

    543b55875c32599e79ab2eab052441f45ba73adc4232f9a38e92f0b0213d3b77

  • Size

    9.8MB

  • MD5

    ccd7efc491f7629c74a6297c1353ea76

  • SHA1

    ea5eed8c208cbd0501f463d03003be0510b8ea26

  • SHA256

    543b55875c32599e79ab2eab052441f45ba73adc4232f9a38e92f0b0213d3b77

  • SHA512

    edd0d0077990abea83a4886459b03573bd12b7d2f984e7e9b1db6137fcde889e58571a19d187f2e29d6dec999ace49dc242a60acb80438ccab4abbea801fe944

  • SSDEEP

    196608:IKOdH96pKc9gB9MCzekbOU3pAedx50AEWeQc5gVdhiU1rrsOMgXj1:Lag8IgB9MQFOU3pAedx50AEW5ccdhtr9

Score
10/10

Malware Config

Signatures

  • Irata family
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 3 IoCs

Files

  • 543b55875c32599e79ab2eab052441f45ba73adc4232f9a38e92f0b0213d3b77
    .apk android

    ir.ziba.keikbedunfer

    .main


Android Permissions

543b55875c32599e79ab2eab052441f45ba73adc4232f9a38e92f0b0213d3b77

Permissions

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.VIBRATE

android.permission.FOREGROUND_SERVICE

android.permission.WAKE_LOCK

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED

com.google.android.c2dm.permission.RECEIVE

ir.ziba.keikbedunfer.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

aandroid.permission.RECEIVE_BOOT_COMPLETED