General

  • Target

    ed16854381567fe2311863cc151ac282_JaffaCakes118

  • Size

    257KB

  • Sample

    240920-h3xv2svdrr

  • MD5

    ed16854381567fe2311863cc151ac282

  • SHA1

    35c4a0aa117faeaff8bd3555ddd0eb13b39c02e8

  • SHA256

    f3be1ea05645d8acf2c00c68c7b383d82821d1f915ac630047da930d88274cf6

  • SHA512

    ef81249b8459bdd9ad50e83f8f98db98f70b4253d3858a85aeb59d77ad7b85ef7134f9531731bd458f8c4faf1d1204b3ee2cae2b1b3789888e502fd4feb57705

  • SSDEEP

    3072:qicFgFSqXNa0s3o2MV2SwcfjUGkmj1AWFhGIhtrJG+2ozcQU8gh1yhw7yds5VLGM:3XNNSo2EscAxmpDGIhtrTpUpH15WJS3

Malware Config

Extracted

Family

simda

Attributes
  • dga

    cihunemyror.eu

    digivehusyd.eu

    vofozymufok.eu

    fodakyhijyv.eu

    nopegymozow.eu

    gatedyhavyd.eu

    marytymenok.eu

    jewuqyjywyv.eu

    qeqinuqypoq.eu

    kemocujufys.eu

    rynazuqihoj.eu

    lyvejujolec.eu

    tucyguqaciq.eu

    xuxusujenes.eu

    puzutuqeqij.eu

    ciliqikytec.eu

    dikoniwudim.eu

    vojacikigep.eu

    fogeliwokih.eu

    nofyjikoxex.eu

    gadufiwabim.eu

    masisokemep.eu

    jepororyrih.eu

    qetoqolusex.eu

    keraborigin.eu

    ryqecolijet.eu

    lymylorozig.eu

    tunujolavez.eu

    xubifaremin.eu

    puvopalywet.eu

Targets

    • Target

      ed16854381567fe2311863cc151ac282_JaffaCakes118

    • Size

      257KB

    • MD5

      ed16854381567fe2311863cc151ac282

    • SHA1

      35c4a0aa117faeaff8bd3555ddd0eb13b39c02e8

    • SHA256

      f3be1ea05645d8acf2c00c68c7b383d82821d1f915ac630047da930d88274cf6

    • SHA512

      ef81249b8459bdd9ad50e83f8f98db98f70b4253d3858a85aeb59d77ad7b85ef7134f9531731bd458f8c4faf1d1204b3ee2cae2b1b3789888e502fd4feb57705

    • SSDEEP

      3072:qicFgFSqXNa0s3o2MV2SwcfjUGkmj1AWFhGIhtrJG+2ozcQU8gh1yhw7yds5VLGM:3XNNSo2EscAxmpDGIhtrTpUpH15WJS3

MITRE ATT&CK Enterprise v15

Tasks