joker | 2399bce7611824e5c567f6a1f7b607af48303513ed26a23291a7744f5bc5badd | Triage

Submit
Reports

Overview

overview

Static

static

2399bce761...dd.exe

windows7-x64

5

2399bce761...dd.exe

windows10-2004-x64

Sharing

General

Target

2399bce7611824e5c567f6a1f7b607af48303513ed26a23291a7744f5bc5badd
Size

309KB
Sample

221003-nxp6xaeca7
MD5

6cbc7e6d153fc19965a2c9baa9a74590
SHA1

a73364f246c9dfa1391f7643a487d9918acfce10
SHA256

2399bce7611824e5c567f6a1f7b607af48303513ed26a23291a7744f5bc5badd
SHA512

408ea4a47aa987ec6fc6954f48105c160567389833aaf313ac94fdc09f4db519c9b0c3c9d03898999ed277ca2d60c980a45363557381b7de02056d6c0cd522c0
SSDEEP

6144:n9UfckvcZvGexZBBgiDPxnzNoLyW6y+Mnzi6K0jQRRfhYp6RE05dpg00:9Nkvk+QMYP5AWqziBZJpg00

Score

10^/10

joker infostealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

2399bce7611824e5c567f6a1f7b607af48303513ed26a23291a7744f5bc5badd.exe

Resource

win7-20220812-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

2399bce7611824e5c567f6a1f7b607af48303513ed26a23291a7744f5bc5badd.exe

Resource

win10v2004-20220901-en

joker infostealer trojan

windows10-2004-x64

16 signatures

150 seconds

Malware Config

Targets

- Target
  
  2399bce7611824e5c567f6a1f7b607af48303513ed26a23291a7744f5bc5badd
- Size
  
  309KB
- MD5
  
  6cbc7e6d153fc19965a2c9baa9a74590
- SHA1
  
  a73364f246c9dfa1391f7643a487d9918acfce10
- SHA256
  
  2399bce7611824e5c567f6a1f7b607af48303513ed26a23291a7744f5bc5badd
- SHA512
  
  408ea4a47aa987ec6fc6954f48105c160567389833aaf313ac94fdc09f4db519c9b0c3c9d03898999ed277ca2d60c980a45363557381b7de02056d6c0cd522c0
- SSDEEP
  
  6144:n9UfckvcZvGexZBBgiDPxnzNoLyW6y+Mnzi6K0jQRRfhYp6RE05dpg00:9Nkvk+QMYP5AWqziBZJpg00
Score

10^/10

joker infostealer trojan
- joker
  Joker is an Android malware that targets billing and SMS fraud.
  infostealer trojan joker
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

jokerinfostealertrojan

© 2018-2024

Terms | Privacy