General

  • Target

    56f15d1e349b6b8db38e82a78f5be3480ba8dbdb70ce6f40abbfbc7dac5513d6

  • Size

    9.6MB

  • MD5

    09d65159abefddbdbb34f0a2395f5ac5

  • SHA1

    5124ac356ce7723732b8c4e5e458a25cb13089c1

  • SHA256

    56f15d1e349b6b8db38e82a78f5be3480ba8dbdb70ce6f40abbfbc7dac5513d6

  • SHA512

    f6ce06f1525cafc279a76e5856f8efd2a73df550b8ae714523b8c57d5845c96cbfd1b8320b3d44299cb0b44d98a7494d3704ff8ffe97dfe797668b0d49abeb93

  • SSDEEP

    196608:hkQmTyPTsFe1iffMellHBCT8eiqQyzgW/kw8PO4awyxV+Xh6OapCnv8HrXvA:pay7gjMellHBCT8eDkwQOR38XpnUrXvA

Score
10/10

Malware Config

Signatures

  • Irata family
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 1 IoCs

Files

  • 56f15d1e349b6b8db38e82a78f5be3480ba8dbdb70ce6f40abbfbc7dac5513d6
    .apk android

    forat.group.noshidani

    .main


Android Permissions

56f15d1e349b6b8db38e82a78f5be3480ba8dbdb70ce6f40abbfbc7dac5513d6

Permissions

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.FOREGROUND_SERVICE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_WIFI_STATE

aandroid.permission.RECEIVE_BOOT_COMPLETED

forat.group.noshidani.permission.C2D_MESSAGE

com.google.android.c2dm.permission.RECEIVE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED