General

  • Target

    23522473e2d3374abb72ce2c83f8c829aa7f29856ac38188d39b6ff46e5b0522N

  • Size

    205KB

  • Sample

    240920-f1g1pszhje

  • MD5

    c9b220d2b27e6debcabe67078f7847b0

  • SHA1

    b9178c8d6df1f947ad6694486935e7d5b7bceeea

  • SHA256

    23522473e2d3374abb72ce2c83f8c829aa7f29856ac38188d39b6ff46e5b0522

  • SHA512

    63eeafeabf808ddf0423ec9754ceb8071ac608c17072ed72131b2e0aa02d6fdfd8fb82d6d2ea19aad297a6d4e4660d73a531523c9cc041ed8c747e54445ff3ca

  • SSDEEP

    3072:b7VD4DUHnNZkfOP6sfIOpJ9C3hPlGxt1UhRkgyankTIzfwAYzWcXCyqT36zhRRKy:VzHnMLm5GNGxHUhtnkdpHqTKzhh8i

Malware Config

Extracted

Family

simda

Attributes
  • dga

    gatyfus.com

    lyvyxor.com

    vojyqem.com

    qetyfuv.com

    puvyxil.com

    gahyqah.com

    lyryfyd.com

    vocyzit.com

    qegyqaq.com

    purydyv.com

    gacyzuz.com

    lygymoj.com

    vowydef.com

    qexylup.com

    pufymoq.com

    gaqydeb.com

    lyxylux.com

    vofymik.com

    qeqysag.com

    puzylyp.com

    gadyniw.com

    lymysan.com

    volykyc.com

    qedynul.com

    pumypog.com

    galykes.com

    lysynur.com

    vonypom.com

    qekykev.com

    pupybul.com

Targets

    • Target

      23522473e2d3374abb72ce2c83f8c829aa7f29856ac38188d39b6ff46e5b0522N

    • Size

      205KB

    • MD5

      c9b220d2b27e6debcabe67078f7847b0

    • SHA1

      b9178c8d6df1f947ad6694486935e7d5b7bceeea

    • SHA256

      23522473e2d3374abb72ce2c83f8c829aa7f29856ac38188d39b6ff46e5b0522

    • SHA512

      63eeafeabf808ddf0423ec9754ceb8071ac608c17072ed72131b2e0aa02d6fdfd8fb82d6d2ea19aad297a6d4e4660d73a531523c9cc041ed8c747e54445ff3ca

    • SSDEEP

      3072:b7VD4DUHnNZkfOP6sfIOpJ9C3hPlGxt1UhRkgyankTIzfwAYzWcXCyqT36zhRRKy:VzHnMLm5GNGxHUhtnkdpHqTKzhh8i

MITRE ATT&CK Enterprise v15

Tasks