General

  • Target

    ed58d1bc0e4d04b6287e2798a5718163_JaffaCakes118

  • Size

    249KB

  • Sample

    240920-lzfzxa1ckm

  • MD5

    ed58d1bc0e4d04b6287e2798a5718163

  • SHA1

    7edba57c77d1651b5598f5b4535c57d90f3f9eac

  • SHA256

    d483ba90bca143204e2c621fa034c09369728e7435d2b7b4a26c3c48159d711c

  • SHA512

    3014062dc650d025312d433dec6ddcb2494f043fe5b507f38c662db2bf3bda051986dfe810f29196ce3e97e3bb394bc609faf5869b2595db40efaaa3712bfab0

  • SSDEEP

    3072:bgPSFFYQ9G3KFASx2rmBMbOj/yFED2BjUW36AuK4ZGuUXR4wql8GOl+TSuFuVPEc:kwFYQk02gvjKFED2Bo3ZGuKtJGAHUvbQ

Malware Config

Extracted

Family

simda

Attributes
  • dga

    cihunemyror.eu

    digivehusyd.eu

    vofozymufok.eu

    fodakyhijyv.eu

    nopegymozow.eu

    gatedyhavyd.eu

    marytymenok.eu

    jewuqyjywyv.eu

    qeqinuqypoq.eu

    kemocujufys.eu

    rynazuqihoj.eu

    lyvejujolec.eu

    tucyguqaciq.eu

    xuxusujenes.eu

    puzutuqeqij.eu

    ciliqikytec.eu

    dikoniwudim.eu

    vojacikigep.eu

    fogeliwokih.eu

    nofyjikoxex.eu

    gadufiwabim.eu

    masisokemep.eu

    jepororyrih.eu

    qetoqolusex.eu

    keraborigin.eu

    ryqecolijet.eu

    lymylorozig.eu

    tunujolavez.eu

    xubifaremin.eu

    puvopalywet.eu

Targets

    • Target

      ed58d1bc0e4d04b6287e2798a5718163_JaffaCakes118

    • Size

      249KB

    • MD5

      ed58d1bc0e4d04b6287e2798a5718163

    • SHA1

      7edba57c77d1651b5598f5b4535c57d90f3f9eac

    • SHA256

      d483ba90bca143204e2c621fa034c09369728e7435d2b7b4a26c3c48159d711c

    • SHA512

      3014062dc650d025312d433dec6ddcb2494f043fe5b507f38c662db2bf3bda051986dfe810f29196ce3e97e3bb394bc609faf5869b2595db40efaaa3712bfab0

    • SSDEEP

      3072:bgPSFFYQ9G3KFASx2rmBMbOj/yFED2BjUW36AuK4ZGuUXR4wql8GOl+TSuFuVPEc:kwFYQk02gvjKFED2Bo3ZGuKtJGAHUvbQ

MITRE ATT&CK Enterprise v15

Tasks