General

  • Target

    ecf64ec8f085c46eeeb62608fdfe0196_JaffaCakes118

  • Size

    271KB

  • Sample

    240920-gknc8asbqn

  • MD5

    ecf64ec8f085c46eeeb62608fdfe0196

  • SHA1

    49b87f8ae19944e8086ff880a7452ce8072c183f

  • SHA256

    b6310f4bf5702d370a0be50e3ffd583c370b71db0e8f20cc22f639fc451c7c89

  • SHA512

    b38adcb89bd92ef2daf7ec0f19cfa9b867d0191529c3e920c8365c3fbbef0be33a899560e57cb08f5f9f632eed459fff29ad0c0cd18994b29fe641caa6d2249d

  • SSDEEP

    6144:w6Y4SDmnkDTrYCL2th1i4XPW42cglluj4bQpnofsn:w6Y4SDmnkoLi4+/f8Mbyo

Malware Config

Extracted

Family

simda

Attributes
  • dga

    cihunemyror.eu

    digivehusyd.eu

    vofozymufok.eu

    fodakyhijyv.eu

    nopegymozow.eu

    gatedyhavyd.eu

    marytymenok.eu

    jewuqyjywyv.eu

    qeqinuqypoq.eu

    kemocujufys.eu

    rynazuqihoj.eu

    lyvejujolec.eu

    tucyguqaciq.eu

    xuxusujenes.eu

    puzutuqeqij.eu

    ciliqikytec.eu

    dikoniwudim.eu

    vojacikigep.eu

    fogeliwokih.eu

    nofyjikoxex.eu

    gadufiwabim.eu

    masisokemep.eu

    jepororyrih.eu

    qetoqolusex.eu

    keraborigin.eu

    ryqecolijet.eu

    lymylorozig.eu

    tunujolavez.eu

    xubifaremin.eu

    puvopalywet.eu

Targets

    • Target

      ecf64ec8f085c46eeeb62608fdfe0196_JaffaCakes118

    • Size

      271KB

    • MD5

      ecf64ec8f085c46eeeb62608fdfe0196

    • SHA1

      49b87f8ae19944e8086ff880a7452ce8072c183f

    • SHA256

      b6310f4bf5702d370a0be50e3ffd583c370b71db0e8f20cc22f639fc451c7c89

    • SHA512

      b38adcb89bd92ef2daf7ec0f19cfa9b867d0191529c3e920c8365c3fbbef0be33a899560e57cb08f5f9f632eed459fff29ad0c0cd18994b29fe641caa6d2249d

    • SSDEEP

      6144:w6Y4SDmnkDTrYCL2th1i4XPW42cglluj4bQpnofsn:w6Y4SDmnkoLi4+/f8Mbyo

MITRE ATT&CK Enterprise v15

Tasks