Overview

overview

10

Static

static

7

Blood Pres...rd.apk

android-9-x86

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Blood Pressure Record.apk

  • Size

    8.4MB

  • Sample

    221106-t5yqxadgcj

  • MD5

    7fea757ea8d41dcf19ae0f71e045893a

  • SHA1

    9dc27c1fd80c369118f9caeb864198896c1e10d4

  • SHA256

    edc96507180679f13a470d605929c73f0dcd9690c374f258806f53753406772b

  • SHA512

    c85f99fb058e0f21ca1d09e5ab57b54c8b6dd37eae947f2ed914f25817fbc0604b08c72d7e5e22a7e186b8955195d539e55ab182a0c8f78340150c5bfc765e6a

  • SSDEEP

    196608:UziuQV4BuUxAlRo45varx+Qn+OlKNnb1EMbwERhcs+aqOw:Uzb+4KRo45CrfnMNnxEacs/qh

Score
10/10
jokerandroidevasioninfostealerransomwaretrojan

Malware Config

Extracted

Family

joker

C2

http://cxjus.oss-ap-southeast-1.aliyuncs.com

https://muyaj.oss-eu-central-1.aliyuncs.com

https://nov2.oss-me-east-1.aliyuncs.com

https://cxjus.oss-ap-southeast-1.aliyuncs.com

Targets

    • Target

      Blood Pressure Record.apk

    • Size

      8.4MB

    • MD5

      7fea757ea8d41dcf19ae0f71e045893a

    • SHA1

      9dc27c1fd80c369118f9caeb864198896c1e10d4

    • SHA256

      edc96507180679f13a470d605929c73f0dcd9690c374f258806f53753406772b

    • SHA512

      c85f99fb058e0f21ca1d09e5ab57b54c8b6dd37eae947f2ed914f25817fbc0604b08c72d7e5e22a7e186b8955195d539e55ab182a0c8f78340150c5bfc765e6a

    • SSDEEP

      196608:UziuQV4BuUxAlRo45varx+Qn+OlKNnb1EMbwERhcs+aqOw:Uzb+4KRo45CrfnMNnxEacs/qh

    Score
    10/10
    jokerevasioninfostealerransomwaretrojan

    • joker

      Joker is an Android malware that targets billing and SMS fraud.

      infostealertrojanjoker

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Reads information about phone network operator.

    • Removes a system notification.

      evasion

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1

MITRE ATT&CK Matrix

Tasks