Overview

overview

10

Static

static

10

30ed3d74c9...f4.apk

android-9-x86

6

30ed3d74c9...f4.apk

android-10-x64

6

30ed3d74c9...f4.apk

android-11-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    30ed3d74c98ae9ed141c8ae7a263decef971003199f053bf55676ffe2b1caff4.zip

  • Size

    1.8MB

  • Sample

    240402-mb7ndsfb66

  • MD5

    b1d10a60844fb27b9b4f613e370de825

  • SHA1

    0566db139634d629e111d6047079612a21f5d41a

  • SHA256

    9ab480c3dc42f9e5f1265bcce9ae752a3ce97ae7108efc97b8ad05c5490ad8d8

  • SHA512

    358e55b38bd9fcdeb76a4c5e5fe381907d56d747f711b6560dd965df9297c317fbed5e97ea5e7597682bdbaead5c134296428a138ab1311ee804b3f37f9dc136

  • SSDEEP

    49152:88M0gmRCWXrnVdkg+YnhBRxGsL0eVcrWvNOVcrNFMc:1M0gm1Xr3kpYnhB+st28OVc0c

Score
10/10
irataandroiddiscovery

Malware Config

Extracted

Family

irata

C2

https://rat-remote.online/data/6418791312/rat/3198ZYVa/contact.php?result=ok&action=upload&androidid=

https://rat-remote.online/data/6418791312/rat/3198ZYVa/requests.php

https://rat-remote.online/data/6418791312/rat/3198ZYVa/sms.php?result=ok&action=upload&androidid=

Targets

    • Target

      30ed3d74c98ae9ed141c8ae7a263decef971003199f053bf55676ffe2b1caff4.apk

    • Size

      1.9MB

    • MD5

      6d2a244b9f0f6bebe60b3ece6e54a289

    • SHA1

      0a2f59224c58ef6451507145ddf217dba631771b

    • SHA256

      30ed3d74c98ae9ed141c8ae7a263decef971003199f053bf55676ffe2b1caff4

    • SHA512

      e8c5f670e1ee4e401e28c74c316aed0cef7d5007ce7c3e5eebaf26bba1205cc79cf88c5e57aab499dece08649f7d93392353314590805589c5d223a9c78d9f44

    • SSDEEP

      24576:x/cDcvb6Tpm4AsRiQci7JQBaib5LbX3zj/jEJubhsmqecEZD/INFky6X6XR+XgCi:x/Lb2AZDi7JQMULTr+ub1zZkNFkyvQQ5

    Score
    6/10
    discovery

    • Acquires the wake lock

    • Reads information about phone network operator.

      discovery
    behavioral1behavioral2behavioral3

MITRE ATT&CK Mobile v15

Tasks