Overview

overview

10

Static

static

10

13ffb8062f...38.apk

android-9-x86

6

13ffb8062f...38.apk

android-10-x64

6

13ffb8062f...38.apk

android-11-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    13ffb8062f65420d6acbe005af589810874cff0dbc4b45ddff005a002d45b638

  • Size

    2.1MB

  • MD5

    f8f051dd3d12f7ef931809e8ff31d53d

  • SHA1

    61bf7d68e3ae48f605a5a505497becb0e80452d7

  • SHA256

    13ffb8062f65420d6acbe005af589810874cff0dbc4b45ddff005a002d45b638

  • SHA512

    b74bef86eb8cb933f806d9fea0680a6a98d018e8954d3d754e00fc509a5507263a282eb5e86acd23367ab94cc9ea57aeb5dc79eb66d161fff29017fff250db50

  • SSDEEP

    49152:ZFHuK4vRcgdqo4qp5cL1n5zN47CDT4rUgZ84kSQ2XDzAspkks:ZFOkQq7qpadZGCDTINLJX3kks

Score
10/10
irata

Malware Config

Signatures

  • Irata family
    irata
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 6 IoCs

Files

  • 13ffb8062f65420d6acbe005af589810874cff0dbc4b45ddff005a002d45b638
    .apk android

    com.lyufo.play

    .main


Android Permissions

13ffb8062f65420d6acbe005af589810874cff0dbc4b45ddff005a002d45b638

Permissions

com.lyufo.play.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.INTERNET

android.permission.VIBRATE

android.permission.POST_NOTIFICATIONS

android.permission.READ_SMS

android.permission.READ_PHONE_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.ACCESS_COARSE_UPDATES

android.permission.WAKE_LOCK

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_BOOT_COMPLETED

com.google.android.c2dm.permission.RECEIVE

com.google.android.gms.permission.AD_ID

com.lyufo.play.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.ACCESS_WIFI_STATE

android.permission.QUERY_ALL_PACKAGES

android.permission.ACCESS_NOTIFICATION_POLICY

android.permission.GET_TASKS