General

  • Target

    ea5c9f4c24e274bcb4a9a40a2f64984f_JaffaCakes118

  • Size

    207KB

  • Sample

    240919-b6jdhavbjh

  • MD5

    ea5c9f4c24e274bcb4a9a40a2f64984f

  • SHA1

    11f9f2bfc4d83fb52629ce1119fdda8422d8e4f0

  • SHA256

    63b665ce499a2ddbde15b3b27e7fc506424498e9b89c2c4740e03961ae8e3c73

  • SHA512

    904b88483690c0e5876c5ad845354f598e6351de7b2f3f30052722aaf593fa3cb778a1fcf87349b7098cd4318e62e0363a431d5eea2e8f9fb49cf016072748e0

  • SSDEEP

    3072:4faBn3kBo1DRC+i8sgHXdzZ9BoMZKhFM8VvFSMzuZN6pZWh6SUDB1WK1Q0CWdaX7:aalkBorLzZ94FSdZEZGQG3SaXz

Malware Config

Extracted

Family

simda

Attributes
  • dga

    gatyfus.com

    lyvyxor.com

    vojyqem.com

    qetyfuv.com

    puvyxil.com

    gahyqah.com

    lyryfyd.com

    vocyzit.com

    qegyqaq.com

    purydyv.com

    gacyzuz.com

    lygymoj.com

    vowydef.com

    qexylup.com

    pufymoq.com

    gaqydeb.com

    lyxylux.com

    vofymik.com

    qeqysag.com

    puzylyp.com

    gadyniw.com

    lymysan.com

    volykyc.com

    qedynul.com

    pumypog.com

    galykes.com

    lysynur.com

    vonypom.com

    qekykev.com

    pupybul.com

Targets

    • Target

      ea5c9f4c24e274bcb4a9a40a2f64984f_JaffaCakes118

    • Size

      207KB

    • MD5

      ea5c9f4c24e274bcb4a9a40a2f64984f

    • SHA1

      11f9f2bfc4d83fb52629ce1119fdda8422d8e4f0

    • SHA256

      63b665ce499a2ddbde15b3b27e7fc506424498e9b89c2c4740e03961ae8e3c73

    • SHA512

      904b88483690c0e5876c5ad845354f598e6351de7b2f3f30052722aaf593fa3cb778a1fcf87349b7098cd4318e62e0363a431d5eea2e8f9fb49cf016072748e0

    • SSDEEP

      3072:4faBn3kBo1DRC+i8sgHXdzZ9BoMZKhFM8VvFSMzuZN6pZWh6SUDB1WK1Q0CWdaX7:aalkBorLzZ94FSdZEZGQG3SaXz

MITRE ATT&CK Enterprise v15

Tasks