Resubmissions

05-04-2024 10:47

240405-mvz3naad47 10

05-04-2024 10:47

240405-mvsctaad43 10

General

  • Target

    16407610208.zip

  • Size

    4.4MB

  • MD5

    e49dcbe52ef6e08bebc9bd1a21f690bd

  • SHA1

    e2f5307fb28ba809934b87e19623e3013855e3bb

  • SHA256

    eceba679afd1c5d60c4861a2d82ac521d343d5e3adb8cce85effe0802b85d394

  • SHA512

    e1918cd5ecba3b5535de8c49fccd19137e97f2805c3cb49df0b97ffab0cd68d6347db8bd79887867b82f911dce498f3a13fcc6fc4aaf5f1a015a3b96e871e647

  • SSDEEP

    98304:bLtyuSnyS4E2YtSGPPx6F3sfa52gG9uD2irG:bLtzx7EPNwF3Qa5f24G

Score
10/10

Malware Config

Signatures

  • Irata family
  • Irata payload 1 IoCs
  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 20 IoCs

Files

  • 16407610208.zip
    .zip

    Password: infected

  • 136efade44da726858480a9b56aab5a9509e7c04b71fec08e9b779c069632d8c
    .apk android

    Password: infected

    com.appsicura.appapk

    .main