Overview

overview

10

Static

static

7

Drink Wate...re.apk

android-9-x86

10

Drink Wate...re.apk

android-11-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Drink Water Clock_1.4_Apkpure.apk

  • Size

    13.1MB

  • Sample

    230120-sdw8bsaf4y

  • MD5

    d657556bcf9f4b423af5be8f4be86597

  • SHA1

    aed205dee071439ccd25d6919bcc1cac4fc7135a

  • SHA256

    f0462f4d2b0cdb23b0aa43f0faf2194bc947e85b0963c95211560eebe3756595

  • SHA512

    7e56b409e58e87085e3bddbb721e48430e44a3edae3db83d8cd35a85ea3046760bd0d8c0e3e21451bbf4cd29687b1a756c076dbeead33e39222ce64eac768767

  • SSDEEP

    393216:uQLRIGe5+YwOxownQEnk82FXT5hVVmjUqx:JpYdoiQ4gLhVVmjP

Score
10/10
jokerandroidevasioninfostealerransomwaretrojan

Malware Config

Extracted

Family

joker

C2

https://weco.oss-eu-central-1.aliyuncs.com/simple

https://kbnt.oss-ap-southeast-1.aliyuncs.com/kbnt

Targets

    • Target

      Drink Water Clock_1.4_Apkpure.apk

    • Size

      13.1MB

    • MD5

      d657556bcf9f4b423af5be8f4be86597

    • SHA1

      aed205dee071439ccd25d6919bcc1cac4fc7135a

    • SHA256

      f0462f4d2b0cdb23b0aa43f0faf2194bc947e85b0963c95211560eebe3756595

    • SHA512

      7e56b409e58e87085e3bddbb721e48430e44a3edae3db83d8cd35a85ea3046760bd0d8c0e3e21451bbf4cd29687b1a756c076dbeead33e39222ce64eac768767

    • SSDEEP

      393216:uQLRIGe5+YwOxownQEnk82FXT5hVVmjUqx:JpYdoiQ4gLhVVmjP

    Score
    10/10
    jokerevasioninfostealerransomwaretrojan

    • joker

      Joker is an Android malware that targets billing and SMS fraud.

      infostealertrojanjoker

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Reads information about phone network operator.

    • Removes a system notification.

      evasion

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks