Overview

overview

10

Static

static

44d19fc60c...87.exe

windows7-x64

10

44d19fc60c...87.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    44d19fc60c791727ec324b57e02b79a17ce22a9a80674887f79b31383a63a187

  • Size

    310KB

  • Sample

    220919-hl6fvsghdm

  • MD5

    d41167879a48205b6875e364eed85a43

  • SHA1

    0ef92fbe70386c3e0217a2b3ba2231136fa4499d

  • SHA256

    44d19fc60c791727ec324b57e02b79a17ce22a9a80674887f79b31383a63a187

  • SHA512

    28e2315e46af62bbbedc39a0ccb6f50b6e440a73f8c35b7a959702b31efec479da5308afd0cf31ee6e3a1a7eac5f1ac635b0c5a21163d136a7308c0b467c0f05

  • SSDEEP

    6144:v9UfckVda6MixnO7a+yjjIZy7dWtIJmYIoC8MRzLn9/EIn4trabt:1NkVdHkaxCyJVFiPzL9O1aZ

Score
10/10
jokerinfostealerpersistencetrojan

Malware Config

Targets

    • Target

      44d19fc60c791727ec324b57e02b79a17ce22a9a80674887f79b31383a63a187

    • Size

      310KB

    • MD5

      d41167879a48205b6875e364eed85a43

    • SHA1

      0ef92fbe70386c3e0217a2b3ba2231136fa4499d

    • SHA256

      44d19fc60c791727ec324b57e02b79a17ce22a9a80674887f79b31383a63a187

    • SHA512

      28e2315e46af62bbbedc39a0ccb6f50b6e440a73f8c35b7a959702b31efec479da5308afd0cf31ee6e3a1a7eac5f1ac635b0c5a21163d136a7308c0b467c0f05

    • SSDEEP

      6144:v9UfckVda6MixnO7a+yjjIZy7dWtIJmYIoC8MRzLn9/EIn4trabt:1NkVdHkaxCyJVFiPzL9O1aZ

    Score
    10/10
    jokerinfostealertrojanpersistence

    • joker

      Joker is an Android malware that targets billing and SMS fraud.

      infostealertrojanjoker

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks