joker | de50389b0adce67e1aef4c47e10f49872d1186188a41bbd9f384b9507854d364 | Triage

Sharing

General

Target

Personal Sticker Maker_6.6.6.apk
Size

26.0MB
Sample

221212-qapyqseb2v
MD5

ae8ac26263c1d17da8ff3d5a9e5a9897
SHA1

ddc66d07d3d7e55bd1044417057deb447b3c13bf
SHA256

de50389b0adce67e1aef4c47e10f49872d1186188a41bbd9f384b9507854d364
SHA512

83e7639db94ceb51a8bdcfa841a02377f24ce0bcddccd81c9bf9bfb0d7bb078cd4f18664348c5cbf565efeba0eebb852562433bcb84360fdde0865cff26c9971
SSDEEP

786432:6fuWFjZtVSYm/2XUSWE6jFRaw1Q0CZDvK/U:6fuWFjRE+ZSle0CZvK8

Score

10^/10

joker android infostealer trojan

Malware Config

Extracted

Family

joker

C2

http://mumble.oss-ap-northeast-2.aliyuncs.com/SketchDraw

Targets

- Target
  
  Personal Sticker Maker_6.6.6.apk
- Size
  
  26.0MB
- MD5
  
  ae8ac26263c1d17da8ff3d5a9e5a9897
- SHA1
  
  ddc66d07d3d7e55bd1044417057deb447b3c13bf
- SHA256
  
  de50389b0adce67e1aef4c47e10f49872d1186188a41bbd9f384b9507854d364
- SHA512
  
  83e7639db94ceb51a8bdcfa841a02377f24ce0bcddccd81c9bf9bfb0d7bb078cd4f18664348c5cbf565efeba0eebb852562433bcb84360fdde0865cff26c9971
- SSDEEP
  
  786432:6fuWFjZtVSYm/2XUSWE6jFRaw1Q0CZDvK/U:6fuWFjRE+ZSle0CZvK8
Score

10^/10

joker infostealer trojan
- joker
  Joker is an Android malware that targets billing and SMS fraud.
  infostealer trojan joker
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

jokerinfostealertrojan

behavioral3