General

  • Target

    ed1aff3fb21a563f469427ad2b9eedbb_JaffaCakes118

  • Size

    213KB

  • Sample

    240920-ja57dsvejc

  • MD5

    ed1aff3fb21a563f469427ad2b9eedbb

  • SHA1

    827182eabbab8c1a1f1a78e344c588857160af0c

  • SHA256

    370ac2ae8c383f46bb8d752c38b245e73e0fc624cfcaaa1a5b36422038f4ae1e

  • SHA512

    58edc6f2e5cc386a9dab18688223806b32cd832fde8784211a63a3e8ecf1ff19fc6bfe876c61eabb95e074facdced310a89cdd59551531b0268c203d53f66898

  • SSDEEP

    6144:lnT/XLzuguVXMvP9dIFf5tjTBm5nS2FUumkVD4rszhzfiwJ:hvhuVXMvzIFfDQ5dZXJJ

Malware Config

Extracted

Family

simda

Attributes
  • dga

    gatyfus.com

    lyvyxor.com

    vojyqem.com

    qetyfuv.com

    puvyxil.com

    gahyqah.com

    lyryfyd.com

    vocyzit.com

    qegyqaq.com

    purydyv.com

    gacyzuz.com

    lygymoj.com

    vowydef.com

    qexylup.com

    pufymoq.com

    gaqydeb.com

    lyxylux.com

    vofymik.com

    qeqysag.com

    puzylyp.com

    gadyniw.com

    lymysan.com

    volykyc.com

    qedynul.com

    pumypog.com

    galykes.com

    lysynur.com

    vonypom.com

    qekykev.com

    pupybul.com

Targets

    • Target

      ed1aff3fb21a563f469427ad2b9eedbb_JaffaCakes118

    • Size

      213KB

    • MD5

      ed1aff3fb21a563f469427ad2b9eedbb

    • SHA1

      827182eabbab8c1a1f1a78e344c588857160af0c

    • SHA256

      370ac2ae8c383f46bb8d752c38b245e73e0fc624cfcaaa1a5b36422038f4ae1e

    • SHA512

      58edc6f2e5cc386a9dab18688223806b32cd832fde8784211a63a3e8ecf1ff19fc6bfe876c61eabb95e074facdced310a89cdd59551531b0268c203d53f66898

    • SSDEEP

      6144:lnT/XLzuguVXMvP9dIFf5tjTBm5nS2FUumkVD4rszhzfiwJ:hvhuVXMvzIFfDQ5dZXJJ

MITRE ATT&CK Enterprise v15

Tasks