.main
android.intent.action.MAIN
.main
android.intent.action.MAIN
General
-
Target
EdalateMan-v7.apk
-
Size
3.6MB
-
MD5
c55d4bf5a53f4b977e4e063e73b3a7a4
-
SHA1
1157ce9bb56cd770e0bce97c9b8d88ea0a191ff9
-
SHA256
d7d834ce199e3ac7889f18e83b32e5a2aec5b043619fc471bc92a50005f58c41
-
SHA512
634d59d4f1cb0f3ec93a4bfe20c07368157d02f0487aebcc6e535198c11bf9ed6320f34fdde1db9d76b70d1943bd61d8ca99a48e75a16c91236b0a404a188f75
-
SSDEEP
49152:Y0uwlP1CEhlH5bkjWadNvjvFYKSNG9QZ1j4Q0PIldSFrU/f6QzlJZsreXDj8Jy:bRUM5bkjW4hjMNkQZeSvJGreXsA
Score
10/10
Malware Config
Signatures
-
Irata family
-
Irata payload 1 IoCs
-
Requests dangerous framework permissions 11 IoCs
Files
-
EdalateMan-v7.apk
com.ghost.app
.main
Android Permissions
EdalateMan-v7.apk
Permissions
com.ghost.app.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.INTERNET
android.permission.VIBRATE
android.permission.POST_NOTIFICATIONS
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.CALL_PHONE
android.permission.READ_CONTACTS
android.permission.READ_CALL_LOG
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
android.permission.ACCESS_NETWORK_STATE
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
com.ghost.app.permission.C2D_MESSAGE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.QUERY_ALL_PACKAGES
android.permission.ACCESS_NOTIFICATION_POLICY
android.permission.ACCESS_WIFI_STATE
android.permission.REBOOT
android.permission.READ_PHONE_NUMBERS
android.permission.WRITE_SECURE_SETTINGS
android.permission.WRITE_SETTINGS
android.permission.CHANGE_NETWORK_STATE
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.CONTACTS
android.permission.WRITE_CONTACTS