General

  • Target

    adl.apk

  • Size

    2.8MB

  • MD5

    a9c325de4633252138fb2892717feffd

  • SHA1

    c6e2cecf49e761cae125c8a7f1469535cc71d5a6

  • SHA256

    19390c5069814743cf75a979e733e54846b26c38fef6e6063d2127d8fcd6dc25

  • SHA512

    52a665c9016c4351bb59ef3a215895132d2e879b46cf4d3977bc6ae550a450f65d7860f7d99665d174ef54a5846f81d7ed2269a333290b1617d89b87c8d5e995

  • SSDEEP

    49152:DTbdsl35rnglmqdJy2WTx8Xt8VaamfvXV+1tda1Mt54OLkf2fbFfNTeMv0HDHN:DHy0mqTy2UU8ViQv+Mt54CjRFTeMvWHN

Score
10/10

Malware Config

Signatures

  • Irata family
  • Irata payload 1 IoCs
  • Requests dangerous framework permissions 8 IoCs

Files

  • adl.apk
    .apk android

    X.God.X

    .main


Android Permissions

adl.apk

Permissions

X.God.X.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.INTERNET

android.permission.READ_SMS

android.permission.READ_CONTACTS

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CALL_PHONE

android.permission.VIBRATE

android.permission.POST_NOTIFICATIONS

android.permission.FOREGROUND_SERVICE

android.permission.WAKE_LOCK

com.google.android.c2dm.permission.RECEIVE

com.google.android.gms.permission.AD_ID

X.God.X.permission.C2D_MESSAGE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.QUERY_ALL_PACKAGES

android.permission.GET_ACCOUNTS

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.READ_PHONE_STATE