General

  • Target

    438b825425ffa82a3d0a7cb82ab5884046ffda276a1a35accca00397bf70d94a

  • Size

    57KB

  • Sample

    221011-bcbfssgebm

  • MD5

    49092763a43fc62fe148832315f01d82

  • SHA1

    c786ca8b1bbb1b66b7214ab8067fc7470f3ecd5e

  • SHA256

    438b825425ffa82a3d0a7cb82ab5884046ffda276a1a35accca00397bf70d94a

  • SHA512

    4baa9ee580adfc2147fbd59d2a78eeb37280b8e4b95b96ea04bfd7fa8303ae476ac13e01a40389e2f833d35b9f2845199bc1372fa6c4eef1349e6cc37d677d66

  • SSDEEP

    1536:OaLphh4px/GaOsXDp1CbVZn+K5mayAMId:OIphho/1OOTNSd

Malware Config

Targets

    • Target

      438b825425ffa82a3d0a7cb82ab5884046ffda276a1a35accca00397bf70d94a

    • Size

      57KB

    • MD5

      49092763a43fc62fe148832315f01d82

    • SHA1

      c786ca8b1bbb1b66b7214ab8067fc7470f3ecd5e

    • SHA256

      438b825425ffa82a3d0a7cb82ab5884046ffda276a1a35accca00397bf70d94a

    • SHA512

      4baa9ee580adfc2147fbd59d2a78eeb37280b8e4b95b96ea04bfd7fa8303ae476ac13e01a40389e2f833d35b9f2845199bc1372fa6c4eef1349e6cc37d677d66

    • SSDEEP

      1536:OaLphh4px/GaOsXDp1CbVZn+K5mayAMId:OIphho/1OOTNSd

    • joker

      Joker is an Android malware that targets billing and SMS fraud.

    • Executes dropped EXE

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.