irata | VPadMOS_V2[.]9[.]apk

General

Target

VPadMOS_V2.9.apk
Size

3.4MB
MD5

4c4db03edaf34857280523233a0c6dc5
SHA1

4bbfe49fb4eefcd7903274097f993eccdf1f2a34
SHA256

4e053664841f40c4ee64b05607776eb5c6ee2e9ddadbfd7def5bec1a9fe1adb8
SHA512

d8e0bd0ddb2ae39bb8564fd0fa33d85623adfedbfefd0ffffaf11339d67d0ce9ac1aea2c0ac1343770edbc5122650ca2dbafce8ba210b6cf18f144e954db32c6
SSDEEP

98304:SFuvgrrrdkXYrV86wMu0NCkgn/kFcZeDWJoBF4bXytXDd:VXYFwMuChgn/kZDbF4czd

Score

10^/10

irata

Irata payload 1 IoCs

Processes:

resource	yara_rule
sample	family_irata4

Declares broadcast receivers with permission to handle system events 1 IoCs

Processes:

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Requests dangerous framework permissions 3 IoCs

Processes:

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Permissions

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

android.permission.VIBRATE