irata | 9bf89b33609973d48c7d09d5774c39bfcefd3922202db0d872f12b3ffdb28529 | Triage

Sharing

General

Target

9bf89b33609973d48c7d09d5774c39bfcefd3922202db0d872f12b3ffdb28529
Size

1.7MB
Sample

240410-p6j7pagd76
MD5

69d3ce972e66635b238dc17e632474ec
SHA1

8f1a2907c27b7a736817bfdb54d662a7770ad328
SHA256

9bf89b33609973d48c7d09d5774c39bfcefd3922202db0d872f12b3ffdb28529
SHA512

e86459dbd262807f260c389566335723cf53a94ed06ca68890fb0ef63d4164eef8aa84181dc31fdd8922b681a9360e506bef5dfce8cab5c0ba66c0208c8cbac6
SSDEEP

49152:uJXz0WuZnKSGZ9DtaT0L3VvbciZCfr9BsNUCngFfE:YXAbNKVZ9DT7VvoiQr9WzQfE

Score

10^/10

irata android evasion persistence

Malware Config

Targets

- Target
  
  9bf89b33609973d48c7d09d5774c39bfcefd3922202db0d872f12b3ffdb28529
- Size
  
  1.7MB
- MD5
  
  69d3ce972e66635b238dc17e632474ec
- SHA1
  
  8f1a2907c27b7a736817bfdb54d662a7770ad328
- SHA256
  
  9bf89b33609973d48c7d09d5774c39bfcefd3922202db0d872f12b3ffdb28529
- SHA512
  
  e86459dbd262807f260c389566335723cf53a94ed06ca68890fb0ef63d4164eef8aa84181dc31fdd8922b681a9360e506bef5dfce8cab5c0ba66c0208c8cbac6
- SSDEEP
  
  49152:uJXz0WuZnKSGZ9DtaT0L3VvbciZCfr9BsNUCngFfE:YXAbNKVZ9DT7VvoiQr9WzQfE
Score

7^/10

evasion persistence
- Makes use of the framework's foreground persistence service
  Application may abuse the framework's foreground service to continue running in the foreground.
  evasion persistence
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

Privilege Escalation

Defense Evasion

Foreground Persistence

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence

behavioral3

evasionpersistence