General

  • Target

    8d9b64a4f202dd784f8370353056132d12e0f597e8e6978bd369e30db06d811dN

  • Size

    206KB

  • Sample

    240920-jzjdxsxanr

  • MD5

    97a3836686ffa10b99d7322f57184cf0

  • SHA1

    edfa18dfdbe4b8ffad4e3aeb559739c130255e5e

  • SHA256

    8d9b64a4f202dd784f8370353056132d12e0f597e8e6978bd369e30db06d811d

  • SHA512

    21f501e5efe8175c02731aeb8c988e6c32b5274d7a044c086aba5bd5da0996fd8b8abf8e0031adcbd759de5f761c8dfbb14e42d05f89796e075350827dd5fdad

  • SSDEEP

    6144:Q+EqFQ9A9ty5bhJcrs0MurPw/c4hd/B/coyXT3nOGX6T+:Q+U9qyFhJy56d/eoyXjn9W+

Malware Config

Extracted

Family

simda

Attributes
  • dga

    gatyfus.com

    lyvyxor.com

    vojyqem.com

    qetyfuv.com

    puvyxil.com

    gahyqah.com

    lyryfyd.com

    vocyzit.com

    qegyqaq.com

    purydyv.com

    gacyzuz.com

    lygymoj.com

    vowydef.com

    qexylup.com

    pufymoq.com

    gaqydeb.com

    lyxylux.com

    vofymik.com

    qeqysag.com

    puzylyp.com

    gadyniw.com

    lymysan.com

    volykyc.com

    qedynul.com

    pumypog.com

    galykes.com

    lysynur.com

    vonypom.com

    qekykev.com

    pupybul.com

Targets

    • Target

      8d9b64a4f202dd784f8370353056132d12e0f597e8e6978bd369e30db06d811dN

    • Size

      206KB

    • MD5

      97a3836686ffa10b99d7322f57184cf0

    • SHA1

      edfa18dfdbe4b8ffad4e3aeb559739c130255e5e

    • SHA256

      8d9b64a4f202dd784f8370353056132d12e0f597e8e6978bd369e30db06d811d

    • SHA512

      21f501e5efe8175c02731aeb8c988e6c32b5274d7a044c086aba5bd5da0996fd8b8abf8e0031adcbd759de5f761c8dfbb14e42d05f89796e075350827dd5fdad

    • SSDEEP

      6144:Q+EqFQ9A9ty5bhJcrs0MurPw/c4hd/B/coyXT3nOGX6T+:Q+U9qyFhJy56d/eoyXjn9W+

MITRE ATT&CK Enterprise v15

Tasks