Overview

overview

10

Static

static

7

com.speedp...up.apk

android-9-x86

10

com.speedp...up.apk

android-10-x64

7

com.speedp...up.apk

android-11-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    com.speedphone.cleanup.apk

  • Size

    7.6MB

  • Sample

    230411-qvctxacf44

  • MD5

    c401c7a62df844305041132f77cd3c53

  • SHA1

    1f2e3fc747b397fd339b69c466771c6ae24ee324

  • SHA256

    66349ba30ceeb042264fb22de72f042cff5003a9e426afeda628bd808be28292

  • SHA512

    165b62af334fb69f8226b96b8fbcdf66504d553ed97472db642b24525face5969471dfff536ebcb83cd9c371c335f458862df42bb2391d1d5d61f9dbff3ed575

  • SSDEEP

    196608:ffAr1V8ZcEsfh8jjIlrStVr6N7Qcy+u+f5dXP6O:f4rLzEsZGEIts2f7If6O

Score
10/10
jokerandroidevasioninfostealertrojan

Malware Config

Extracted

Family

joker

C2

https://adcbk.oss-eu-central-1.aliyuncs.com/af2

https://adcbk.oss-eu-central-1.aliyuncs.com/fbhx

Targets

    • Target

      com.speedphone.cleanup.apk

    • Size

      7.6MB

    • MD5

      c401c7a62df844305041132f77cd3c53

    • SHA1

      1f2e3fc747b397fd339b69c466771c6ae24ee324

    • SHA256

      66349ba30ceeb042264fb22de72f042cff5003a9e426afeda628bd808be28292

    • SHA512

      165b62af334fb69f8226b96b8fbcdf66504d553ed97472db642b24525face5969471dfff536ebcb83cd9c371c335f458862df42bb2391d1d5d61f9dbff3ed575

    • SSDEEP

      196608:ffAr1V8ZcEsfh8jjIlrStVr6N7Qcy+u+f5dXP6O:f4rLzEsZGEIts2f7If6O

    Score
    10/10
    jokerevasioninfostealertrojan

    • joker

      Joker is an Android malware that targets billing and SMS fraud.

      infostealertrojanjoker

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Reads information about phone network operator.

    • Removes a system notification.

      evasion
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks