irata | ca8dc8043b337b7e5f1ae21f2dc9a7bcedb14ea295d2b81f0c39ab77298d310c | Triage

Sharing

General

Target

e1e6a2a7d00819ea1210434048e82e53.bin
Size

2.4MB
Sample

241006-ngyhca1ekl
MD5

2b96ff4277a725db7e09581a5576c5cf
SHA1

b071e2ee72a650d3b1567675483f7948ed16f52a
SHA256

ca8dc8043b337b7e5f1ae21f2dc9a7bcedb14ea295d2b81f0c39ab77298d310c
SHA512

6f89eccaf840d107014dd07d1c89bac96fee1949a976b55a7d992d8b968fe598a25f2f37093b1d12f9e0240c799970e3f6d5e9c2f16bf276f159dbca50bc318f
SSDEEP

49152:+xYEhZKeqf/hNlQWjM6hNY5mjwWSXIDnn4J1oPjbVsCzXv1fZX0My:+xYUwl/zxjFNY5/4cJGLxsCjFWMy

Score

10^/10

irata android discovery persistence

Malware Config

Targets

- Target
  
  8c91ec587d8f8454d21ba54954f97c19330e7fe665eec988629223e71b306e5d.apk
- Size
  
  2.6MB
- MD5
  
  e1e6a2a7d00819ea1210434048e82e53
- SHA1
  
  0cc412fd03b7a9b9c2ee180de17aaeb47ca88d53
- SHA256
  
  8c91ec587d8f8454d21ba54954f97c19330e7fe665eec988629223e71b306e5d
- SHA512
  
  b3e89fb1a0b451453d860a801c57c8904f10ec487ce4accc19e6734818e874aac60a2eb1af37f50f7116f14dcfc36ddcf4f9d7debe089e21bdd6ae0c1f001ff2
- SSDEEP
  
  49152:HkJ/2jrkmNBOh8UyV0l2XO9SkpfnzU2K6HC1P0+PLV3glTzKmoq/r31:Et2cAQVhQXCSkp/42K6iN3zul/31
Score

6^/10

discovery persistence
- Acquires the wake lock
- Queries information about active data network
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

behavioral3