General

  • Target

    Application.apk

  • Size

    6.2MB

  • MD5

    d61568a1d7d387b947d82a52c0aa3dd8

  • SHA1

    1a14fea48bae04f4670f14e8259a58d7a7ef4032

  • SHA256

    4332c47f1f127b151349ebac341f9d9d479b57576016fe8607edf1516858e695

  • SHA512

    cd1d8578495042fd3cff37000b26a42482f3a8d4d1eec6cd2203a80f34928759deb3b0356922794e08fe0db7c29e1eb07f18d45847907e902ca479647fa6ca8a

  • SSDEEP

    196608:H5I3DTeTyIuGp83WXC/YGJYSvkgdQ+31T4obkajQaqnbK6:H63/euGW+CwGvrlTl2aMbf

Score
10/10

Malware Config

Signatures

  • Irata family
  • Irata payload 2 IoCs
  • Requests dangerous framework permissions 4 IoCs

Files

  • Application.apk
    .apk android

    com.spy.ir

    .main


Android Permissions

Application.apk

Permissions

com.spy.ir.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.INTERNET

android.permission.READ_SMS

android.permission.VIBRATE

android.permission.POST_NOTIFICATIONS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.WAKE_LOCK

android.permission.ACCESS_NETWORK_STATE

com.google.android.c2dm.permission.RECEIVE

com.google.android.gms.permission.AD_ID

com.spy.ir.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.SEND_SMS

android.permission.RECEIVE_SMS