General

  • Target

    925773bf9de51ef983c13d62f0f55fcc343d1a79958a7f1c5abb6e36bf2277caN

  • Size

    380KB

  • Sample

    240918-t8jq6asclj

  • MD5

    c1679013dc1ce13561487d8d181ebac0

  • SHA1

    e69e5f4808c0994796a16d920436c5d57c6a8ea9

  • SHA256

    925773bf9de51ef983c13d62f0f55fcc343d1a79958a7f1c5abb6e36bf2277ca

  • SHA512

    c087befaf2f52e4b7da8b7b013ca8341fdc905d9e8e2ddbda8182919a861d54a822b6c4ae2dff691ad77cfbba5c32ed9579d0daad024891da28c5c22b0b1da96

  • SSDEEP

    6144:8aEmWPDNND9yRPzLq+YXFqaZiMLic9kzVd7EAC4TSs9EiwmryP:UmWhND9yJz+b1FcMLmp2ATTSsdwmryP

Malware Config

Extracted

Family

simda

Attributes
  • dga

    gatyfus.com

    lyvyxor.com

    vojyqem.com

    qetyfuv.com

    puvyxil.com

    gahyqah.com

    lyryfyd.com

    vocyzit.com

    qegyqaq.com

    purydyv.com

    gacyzuz.com

    lygymoj.com

    vowydef.com

    qexylup.com

    pufymoq.com

    gaqydeb.com

    lyxylux.com

    vofymik.com

    qeqysag.com

    puzylyp.com

    gadyniw.com

    lymysan.com

    volykyc.com

    qedynul.com

    pumypog.com

    galykes.com

    lysynur.com

    vonypom.com

    qekykev.com

    pupybul.com

Targets

    • Target

      925773bf9de51ef983c13d62f0f55fcc343d1a79958a7f1c5abb6e36bf2277caN

    • Size

      380KB

    • MD5

      c1679013dc1ce13561487d8d181ebac0

    • SHA1

      e69e5f4808c0994796a16d920436c5d57c6a8ea9

    • SHA256

      925773bf9de51ef983c13d62f0f55fcc343d1a79958a7f1c5abb6e36bf2277ca

    • SHA512

      c087befaf2f52e4b7da8b7b013ca8341fdc905d9e8e2ddbda8182919a861d54a822b6c4ae2dff691ad77cfbba5c32ed9579d0daad024891da28c5c22b0b1da96

    • SSDEEP

      6144:8aEmWPDNND9yRPzLq+YXFqaZiMLic9kzVd7EAC4TSs9EiwmryP:UmWhND9yJz+b1FcMLmp2ATTSsdwmryP

MITRE ATT&CK Enterprise v15

Tasks