Overview

overview

10

Static

static

7

com.easyap...om.apk

android-9-x86

10

com.easyap...om.apk

android-10-x64

7

com.easyap...om.apk

android-11-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    com.easyapp.collage.phmaker_20_apksos.com.apk

  • Size

    11.5MB

  • Sample

    230123-s7mkzsea57

  • MD5

    0dd51dad6fed0c4e0ca4a451a327b0e9

  • SHA1

    f6b3549a0985ddc46f327474c5d909d093030c44

  • SHA256

    4d3622c5a47fee261c83a89980eaba8c2a01fb63c8bfd18525c60342786c4f42

  • SHA512

    7d9f887017f241730df2a49c3d8e6809b7c7cf8b4ff9b19b243a925cf49ab516bf249f6a3bbbefbca77eee4d598dab86d8790a1c4347c078f4952a510483ea79

  • SSDEEP

    196608:CKcDsn2rPkCFmce2APZtPahwtkvSVkSPMAJ6IlAPa:CKAsn2rPXFmDDPPPaw5lP7pAPa

Score
10/10
jokerandroidinfostealertrojan

Malware Config

Extracted

Family

joker

C2

https://weco.oss-eu-central-1.aliyuncs.com/simple

https://weco.oss-eu-central-1.aliyuncs.com/test_kbnt

Targets

    • Target

      com.easyapp.collage.phmaker_20_apksos.com.apk

    • Size

      11.5MB

    • MD5

      0dd51dad6fed0c4e0ca4a451a327b0e9

    • SHA1

      f6b3549a0985ddc46f327474c5d909d093030c44

    • SHA256

      4d3622c5a47fee261c83a89980eaba8c2a01fb63c8bfd18525c60342786c4f42

    • SHA512

      7d9f887017f241730df2a49c3d8e6809b7c7cf8b4ff9b19b243a925cf49ab516bf249f6a3bbbefbca77eee4d598dab86d8790a1c4347c078f4952a510483ea79

    • SSDEEP

      196608:CKcDsn2rPkCFmce2APZtPahwtkvSVkSPMAJ6IlAPa:CKAsn2rPXFmDDPPPaw5lP7pAPa

    Score
    10/10
    jokerinfostealertrojan

    • joker

      Joker is an Android malware that targets billing and SMS fraud.

      infostealertrojanjoker

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Reads information about phone network operator.

    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks