irata | 22c38bc21b7bb1d73994b54b8423de0d995d3fcd0b28c4e4dff2aca6305ab894[.]zip

General

Target

22c38bc21b7bb1d73994b54b8423de0d995d3fcd0b28c4e4dff2aca6305ab894.zip
Size

1.3MB
MD5

f83c68a161521684c3dbac9448b69f18
SHA1

fc44f912ab14180a45cef239ce2e6ef110b83f9f
SHA256

4c0643a74ee720971074154e274fc616a859924197f84b5b929923c9492c05c7
SHA512

4d960e04ddddb44454c2b19b50285c588c069e9d39508700e16d099571b8ad1bd1e2826a9f4371c299e7689e570e0b20c7a997bc5016f4627ddaa1527c483508
SSDEEP

24576:99/Ay+RbRrIeguk/gBZXM/LnVbEzVUE1RJrK1L4ljA2F5s0XbDIJfw44F7CbK0zc:XA/Rr43/gDXCn5EzigRJro4lc2LbXbUa

Score

10^/10

irata

Irata payload 1 IoCs

Processes:

resource	yara_rule
static1/unpack001/22c38bc21b7bb1d73994b54b8423de0d995d3fcd0b28c4e4dff2aca6305ab894.apk	family_irata4

Requests dangerous framework permissions 2 IoCs

Processes:

description	ioc
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS

22c38bc21b7bb1d73994b54b8423de0d995d3fcd0b28c4e4dff2aca6305ab894.zip
.zip

Password: infected
22c38bc21b7bb1d73994b54b8423de0d995d3fcd0b28c4e4dff2aca6305ab894.apk
.apk android

Password: infected

com.appCommon.org

.main

Activities

.main

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.FOREGROUND_SERVICE
android.permission.READ_SMS
android.permission.RECEIVE_SMS

Receivers

.receiver

android.provider.Telephony.SMS_RECEIVED

Services