joker | a7553d77edca85bec980e38e69bf0e9f36962f20be0ee759e9a96030d519c5a0 | Triage

Sharing

General

Target

strings.exe
Size

361KB
Sample

220902-dfjbxsfbak
MD5

818a6b4770d7090cfa60d53e4fcb854a
SHA1

9efc50edf5a7c92d51503c78efbe755313871e7b
SHA256

a7553d77edca85bec980e38e69bf0e9f36962f20be0ee759e9a96030d519c5a0
SHA512

03b8574b3948bd54999b33b2d4b7bc0fe27ddbdadb6d0e5b4a2ab97645c071ae32c661b76384aead0bd1594445e1d152ffdae4eda585bbbb55b90610bf40c5f2
SSDEEP

6144:EopCpgg69QIEXbryg1A1KJ7zMKBRyXtghOkm5xKXoulo8+jbjFOuBRlwa:TIpgg69QIEXbrygK1KJ7zMKL7ouloDsB

Score

10^/10

joker infostealer macos trojan

Malware Config

Extracted

Family

joker

C2

https://flomo-resource.oss-cn-shanghai.aliyuncs.com

https://neat-reader-release.oss-cn-hongkong.aliyuncs.com

Targets

- Target
  
  strings.exe
- Size
  
  361KB
- MD5
  
  818a6b4770d7090cfa60d53e4fcb854a
- SHA1
  
  9efc50edf5a7c92d51503c78efbe755313871e7b
- SHA256
  
  a7553d77edca85bec980e38e69bf0e9f36962f20be0ee759e9a96030d519c5a0
- SHA512
  
  03b8574b3948bd54999b33b2d4b7bc0fe27ddbdadb6d0e5b4a2ab97645c071ae32c661b76384aead0bd1594445e1d152ffdae4eda585bbbb55b90610bf40c5f2
- SSDEEP
  
  6144:EopCpgg69QIEXbryg1A1KJ7zMKBRyXtghOkm5xKXoulo8+jbjFOuBRlwa:TIpgg69QIEXbrygK1KJ7zMKL7ouloDsB
Score

10^/10

joker infostealer trojan
- joker
  Joker is an Android malware that targets billing and SMS fraud.
  infostealer trojan joker
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

jokerinfostealertrojan