General
-
Target
9eb00bbed0b2fd91e6da5404f599732daece16d029365b4944b850f86e2ddc56
-
Size
57KB
-
Sample
221011-fhzsssfbf7
-
MD5
664c7bfca75fefcb8ac90b551882a6ca
-
SHA1
3ea78d1f6e4fb6172d53cb4331917d890546fa9f
-
SHA256
9eb00bbed0b2fd91e6da5404f599732daece16d029365b4944b850f86e2ddc56
-
SHA512
2b868d895f177098fc3761422559f37a3e53ab72a74e7410cf145b6441e17f7780b723746fbc64c33d071faa96671a0650e05b440a51bc179a58849c341c82d8
-
SSDEEP
768:hBRMLJshpXC1tlRiYTqyFN9Mwxgb+qi90sG3gGaru+6o6cAT5LZwmChDkGBh9OHD:hBFwt8Om/sPruWOLZwmChgGzg+fPVG6E
Malware Config
Targets
-
-
Target
9eb00bbed0b2fd91e6da5404f599732daece16d029365b4944b850f86e2ddc56
-
Size
57KB
-
MD5
664c7bfca75fefcb8ac90b551882a6ca
-
SHA1
3ea78d1f6e4fb6172d53cb4331917d890546fa9f
-
SHA256
9eb00bbed0b2fd91e6da5404f599732daece16d029365b4944b850f86e2ddc56
-
SHA512
2b868d895f177098fc3761422559f37a3e53ab72a74e7410cf145b6441e17f7780b723746fbc64c33d071faa96671a0650e05b440a51bc179a58849c341c82d8
-
SSDEEP
768:hBRMLJshpXC1tlRiYTqyFN9Mwxgb+qi90sG3gGaru+6o6cAT5LZwmChDkGBh9OHD:hBFwt8Om/sPruWOLZwmChgGzg+fPVG6E
Score10/10-
joker
Joker is an Android malware that targets billing and SMS fraud.
-
Executes dropped EXE
-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-