irata | af459e6d663d568fae940561b8aab0874a2e34fe22af3404ac3f425cfd1168ce | Triage

Sharing

General

Target

base.apk
Size

2.8MB
Sample

240709-k6gpcawdqp
MD5

0eeee3a9c3d0107ccbe577e99b3ac158
SHA1

3a7cd40aa40cfa58f9173c69edd6acc6f1b18e5d
SHA256

af459e6d663d568fae940561b8aab0874a2e34fe22af3404ac3f425cfd1168ce
SHA512

0530d303482cad04b3253e66a95b3312360609c98aee19d5bfc1a9991b5c45de0b49ff93183707f8921ef0ff85d89829fd97cc5a01fbb033085cd23fbaf44d17
SSDEEP

49152:bPSe9096pV6rX+Q1VpBaHoIkoo59X9SABZ+nm98mFBXAwtWk0ESkbU4Kp+7:bqe9b2rX+QFMIIkh9tSABAngW6F7

Score

10^/10

irata android collection credential_access discovery impact persistence

Malware Config

Targets

- Target
  
  base.apk
- Size
  
  2.8MB
- MD5
  
  0eeee3a9c3d0107ccbe577e99b3ac158
- SHA1
  
  3a7cd40aa40cfa58f9173c69edd6acc6f1b18e5d
- SHA256
  
  af459e6d663d568fae940561b8aab0874a2e34fe22af3404ac3f425cfd1168ce
- SHA512
  
  0530d303482cad04b3253e66a95b3312360609c98aee19d5bfc1a9991b5c45de0b49ff93183707f8921ef0ff85d89829fd97cc5a01fbb033085cd23fbaf44d17
- SSDEEP
  
  49152:bPSe9096pV6rX+Q1VpBaHoIkoo59X9SABZ+nm98mFBXAwtWk0ESkbU4Kp+7:bqe9b2rX+QFMIIkh9tSABAngW6F7
Score

7^/10

discovery persistence collection credential_access impact
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Acquires the wake lock
- Queries information about active data network
  discovery
- Queries the mobile country code (MCC)
  discovery
- Reads information about phone network operator.
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Clipboard Data

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Clipboard Data

Command and Control

Exfiltration

Impact

Data Manipulation

Transmitted Data Manipulation

Tasks

static1

behavioral1

discoverypersistence

behavioral2

collectioncredential_accessdiscoveryimpactpersistence

behavioral3

collectioncredential_accessdiscoveryimpact