Overview

overview

10

Static

static

214772eef9...e5.exe

windows7-x64

10

214772eef9...e5.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    214772eef96c87f6e04c9447384a31e5

  • Size

    124KB

  • Sample

    221004-x4gmsacdgk

  • MD5

    214772eef96c87f6e04c9447384a31e5

  • SHA1

    a2bf5350b6a36c71d0b9e350e3cea34d285b293a

  • SHA256

    200a33f3776fbe48ce1565851d06e6e8e1462f91e88d3326581e1b4327613bce

  • SHA512

    4fddcc0509e8060263360515b94a116f908407be0ea7e66abfc4b9a3aab310264aaad0ded68921fa1731242f0975941643f8de521b9877f9c5ab921bf85cf096

  • SSDEEP

    3072:q1i/NU8bOMYcYYcmy5cU+gTn6HOjDhWrzvvQwlgOks5YmMOMYcYY51i/NU8F:Ui/NjO5YBgegD0PHzSv3Oai/NN

Score
10/10
jokerinfostealerpersistencetrojan

Malware Config

Targets

    • Target

      214772eef96c87f6e04c9447384a31e5

    • Size

      124KB

    • MD5

      214772eef96c87f6e04c9447384a31e5

    • SHA1

      a2bf5350b6a36c71d0b9e350e3cea34d285b293a

    • SHA256

      200a33f3776fbe48ce1565851d06e6e8e1462f91e88d3326581e1b4327613bce

    • SHA512

      4fddcc0509e8060263360515b94a116f908407be0ea7e66abfc4b9a3aab310264aaad0ded68921fa1731242f0975941643f8de521b9877f9c5ab921bf85cf096

    • SSDEEP

      3072:q1i/NU8bOMYcYYcmy5cU+gTn6HOjDhWrzvvQwlgOks5YmMOMYcYY51i/NU8F:Ui/NjO5YBgegD0PHzSv3Oai/NN

    Score
    10/10
    jokerinfostealerpersistencetrojan

    • joker

      Joker is an Android malware that targets billing and SMS fraud.

      infostealertrojanjoker

    • Modifies Installed Components in the registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks