General

  • Target

    RGB Emoji Keyboard_2.4.2.apk

  • Size

    38MB

  • Sample

    220613-tmdb9adeb8

  • MD5

    13bab7d1ee1a3cf250d035d4c5ee9a64

  • SHA1

    2b3b1ce3f7b3fcd71a1cd3ecf7fee4a8058db04e

  • SHA256

    c5aac53c3206f75d0fe85e569e42a9387d7f0ff61b731f57d6b8b62a4a28ed15

  • SHA512

    e8ce4fa2323733f2d4042f1461ba125f7500bcc2798c93b50e43ccafa39ec2ec4c4574876580c049f422c0a95de38b534325df5261d6eed02cec01149738d190

Malware Config

Extracted

Family

joker

C2

https://xjuys.oss-accelerate.aliyuncs.com

https://beside.oss-eu-west-1.aliyuncs.com

Targets

    • Target

      RGB Emoji Keyboard_2.4.2.apk

    • Size

      38MB

    • MD5

      13bab7d1ee1a3cf250d035d4c5ee9a64

    • SHA1

      2b3b1ce3f7b3fcd71a1cd3ecf7fee4a8058db04e

    • SHA256

      c5aac53c3206f75d0fe85e569e42a9387d7f0ff61b731f57d6b8b62a4a28ed15

    • SHA512

      e8ce4fa2323733f2d4042f1461ba125f7500bcc2798c93b50e43ccafa39ec2ec4c4574876580c049f422c0a95de38b534325df5261d6eed02cec01149738d190

    • joker

      Joker is an Android malware that targets billing and SMS fraud.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

MITRE ATT&CK Matrix

Tasks