General

  • Target

    1af90ab9d521d78d660178e472b412447bb0441d3b19611b7ee4356589841be6

  • Size

    206KB

  • Sample

    240918-1ywfjawblq

  • MD5

    c9d28a274d71c29c48b82826bb9c28e6

  • SHA1

    64e8cb08647ca04c99c14c22fe3d797bac74e539

  • SHA256

    1af90ab9d521d78d660178e472b412447bb0441d3b19611b7ee4356589841be6

  • SHA512

    2c4e63af32cb4e61cb501b338c81522696c6aa83014e0043962307f32eb419a603f0687e13cc859d5da28612a27f1ca2b95d9ecf35a36e13a4fc12f8383e2e63

  • SSDEEP

    6144:Fu6ABIdHMnMMYGlPtFYmeiGLaMt8ApYUBvNdP4y2:FuLIHMhPtFvei8aM2Aa8N+y2

Malware Config

Extracted

Family

simda

Attributes
  • dga

    gatyfus.com

    lyvyxor.com

    vojyqem.com

    qetyfuv.com

    puvyxil.com

    gahyqah.com

    lyryfyd.com

    vocyzit.com

    qegyqaq.com

    purydyv.com

    gacyzuz.com

    lygymoj.com

    vowydef.com

    qexylup.com

    pufymoq.com

    gaqydeb.com

    lyxylux.com

    vofymik.com

    qeqysag.com

    puzylyp.com

    gadyniw.com

    lymysan.com

    volykyc.com

    qedynul.com

    pumypog.com

    galykes.com

    lysynur.com

    vonypom.com

    qekykev.com

    pupybul.com

Targets

    • Target

      1af90ab9d521d78d660178e472b412447bb0441d3b19611b7ee4356589841be6

    • Size

      206KB

    • MD5

      c9d28a274d71c29c48b82826bb9c28e6

    • SHA1

      64e8cb08647ca04c99c14c22fe3d797bac74e539

    • SHA256

      1af90ab9d521d78d660178e472b412447bb0441d3b19611b7ee4356589841be6

    • SHA512

      2c4e63af32cb4e61cb501b338c81522696c6aa83014e0043962307f32eb419a603f0687e13cc859d5da28612a27f1ca2b95d9ecf35a36e13a4fc12f8383e2e63

    • SSDEEP

      6144:Fu6ABIdHMnMMYGlPtFYmeiGLaMt8ApYUBvNdP4y2:FuLIHMhPtFvei8aM2Aa8N+y2

MITRE ATT&CK Enterprise v15

Tasks