General

  • Target

    e2a7a680c1b1646fc74c0c2f2a9ace11595dee74ca79db9665184c6eea0c991f

  • Size

    96KB

  • Sample

    221001-28197scgar

  • MD5

    688a745ef9d88455295a520729998242

  • SHA1

    08caca424b35f1c2976f417076f0c62e504e6662

  • SHA256

    e2a7a680c1b1646fc74c0c2f2a9ace11595dee74ca79db9665184c6eea0c991f

  • SHA512

    9519cf37acefe889840225bb996d2b31a8eabefb3eb57c5b69c949781018d3918daa768fc2aa2ec78d327985daf7faf9f5c2d422e0d4192ccec9404164281dc1

  • SSDEEP

    768:L28z7t47kXJREBku3/nK5xa/24/ki8qkM7B1YlhrIWYHLxqu+TKW1Kljl9nnyQOD:T4JSuPKTBZrO/A5Qr+TLn+eWQouy+r

Malware Config

Targets

    • Target

      e2a7a680c1b1646fc74c0c2f2a9ace11595dee74ca79db9665184c6eea0c991f

    • Size

      96KB

    • MD5

      688a745ef9d88455295a520729998242

    • SHA1

      08caca424b35f1c2976f417076f0c62e504e6662

    • SHA256

      e2a7a680c1b1646fc74c0c2f2a9ace11595dee74ca79db9665184c6eea0c991f

    • SHA512

      9519cf37acefe889840225bb996d2b31a8eabefb3eb57c5b69c949781018d3918daa768fc2aa2ec78d327985daf7faf9f5c2d422e0d4192ccec9404164281dc1

    • SSDEEP

      768:L28z7t47kXJREBku3/nK5xa/24/ki8qkM7B1YlhrIWYHLxqu+TKW1Kljl9nnyQOD:T4JSuPKTBZrO/A5Qr+TLn+eWQouy+r

    • joker

      Joker is an Android malware that targets billing and SMS fraud.

    • Executes dropped EXE

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.