.main
android.intent.action.MAIN
General
-
Target
7e4143dd27644a0aedc66130c2a0a56e7aa556e75135f2c6a40c1106228e3fad.apk
-
Size
1.9MB
-
MD5
1f5c2daab9da9349c61abe950c661aba
-
SHA1
6da1a8574e1cd927a139c7be328b867c243070d5
-
SHA256
7e4143dd27644a0aedc66130c2a0a56e7aa556e75135f2c6a40c1106228e3fad
-
SHA512
cea9bc240975e13c373125dfe83ea6aed144f11e7935282669a74843b464d8fc2def552c07e48286a69b2350182ba644fbe994cec546fc52dd857c5bfabadb6c
-
SSDEEP
49152:9//SRcduCkmkYwPxtlOHiPJ+PSD/yS+0VTWtHubvw8wiOZSmKIM7:VKR8uCbkX5ss0PSD6ECtObvXwiO4N7
Score
10/10
Malware Config
Extracted
Family
irata
C2
https://vahidtried.nitrocp.site/wa//contact.php?result=ok&action=upload&androidid=
https://vahidtried.nitrocp.site/wa//requests.php
https://vahidtried.nitrocp.site/wa//sms.php?result=ok&action=upload&androidid=
Signatures
-
Irata family
-
Irata payload 2 IoCs
-
Requests dangerous framework permissions 4 IoCs
Files
-
7e4143dd27644a0aedc66130c2a0a56e7aa556e75135f2c6a40c1106228e3fad.apk
kisi.com
.main
Android Permissions
7e4143dd27644a0aedc66130c2a0a56e7aa556e75135f2c6a40c1106228e3fad.apk
Permissions
android.permission.INTERNET
android.permission.READ_SMS
android.permission.VIBRATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
android.permission.WAKE_LOCK
android.permission.ACCESS_NETWORK_STATE
com.google.android.c2dm.permission.RECEIVE
kisi.com.permission.C2D_MESSAGE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.SEND_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_SMS
android.permission.READ_CONTACTS