General

  • Target

    base.apk

  • Size

    2.8MB

  • MD5

    ff04ad3b47d9b71753545bc02dc8c33e

  • SHA1

    184b7979dc29ce42fcbbb033671fb928e695331d

  • SHA256

    b89ecafde09182f1b0eaef752d5a146c465e49d51840a9b571a63d359fd5efdd

  • SHA512

    6937975030162551b38e8d91a35b175009be470d66eb30992a460c3c9275f16e8d58295a7a20cc5e544cfb3455ea247d3c22dc6212d791de06c4ea6758dd9d6f

  • SSDEEP

    49152:mPSe9096pV6rX+Q1VpBaHoIkoo59X9SABZ+nm98mFBXAwtWk0ESkbUxpP:mqe9b2rX+QFMIIkh9tSABAngW6qP

Score
10/10

Malware Config

Signatures

  • Irata family
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 8 IoCs

Files

  • base.apk
    .apk android

    X.God.X

    .main


Android Permissions

base.apk

Permissions

X.God.X.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.INTERNET

android.permission.READ_SMS

android.permission.READ_CONTACTS

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CALL_PHONE

android.permission.VIBRATE

android.permission.POST_NOTIFICATIONS

android.permission.FOREGROUND_SERVICE

android.permission.WAKE_LOCK

com.google.android.c2dm.permission.RECEIVE

com.google.android.gms.permission.AD_ID

X.God.X.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.QUERY_ALL_PACKAGES

android.permission.GET_ACCOUNTS

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.READ_PHONE_STATE