General

  • Target

    ede71780e1f0948cfdbf272a46e434df_JaffaCakes118

  • Size

    270KB

  • Sample

    240920-s2x5javall

  • MD5

    ede71780e1f0948cfdbf272a46e434df

  • SHA1

    b005fbf8aac927a4bcbeed306950058eb0cac242

  • SHA256

    c103039cc0c230795fb6ec2e6b3bc0742d33459ffd56e9e49b9a73b5e29075d0

  • SHA512

    3126cfc655dd02b95ff31daab76708f20175d68caf3f50d34d8c4bfcbd868ff13a348884e5d1495b43dce87144add347317e0cedabd8cba2a0b0c3c4e5ddc6a9

  • SSDEEP

    6144:Hs+IN9RS6LTa9Ar37L2We1zwYVlEkdqY/nMmS6H5el8BJN:MHMwm9AHebVKkdrH5eyr

Malware Config

Extracted

Family

simda

Attributes
  • dga

    cihunemyror.eu

    digivehusyd.eu

    vofozymufok.eu

    fodakyhijyv.eu

    nopegymozow.eu

    gatedyhavyd.eu

    marytymenok.eu

    jewuqyjywyv.eu

    qeqinuqypoq.eu

    kemocujufys.eu

    rynazuqihoj.eu

    lyvejujolec.eu

    tucyguqaciq.eu

    xuxusujenes.eu

    puzutuqeqij.eu

    ciliqikytec.eu

    dikoniwudim.eu

    vojacikigep.eu

    fogeliwokih.eu

    nofyjikoxex.eu

    gadufiwabim.eu

    masisokemep.eu

    jepororyrih.eu

    qetoqolusex.eu

    keraborigin.eu

    ryqecolijet.eu

    lymylorozig.eu

    tunujolavez.eu

    xubifaremin.eu

    puvopalywet.eu

Targets

    • Target

      ede71780e1f0948cfdbf272a46e434df_JaffaCakes118

    • Size

      270KB

    • MD5

      ede71780e1f0948cfdbf272a46e434df

    • SHA1

      b005fbf8aac927a4bcbeed306950058eb0cac242

    • SHA256

      c103039cc0c230795fb6ec2e6b3bc0742d33459ffd56e9e49b9a73b5e29075d0

    • SHA512

      3126cfc655dd02b95ff31daab76708f20175d68caf3f50d34d8c4bfcbd868ff13a348884e5d1495b43dce87144add347317e0cedabd8cba2a0b0c3c4e5ddc6a9

    • SSDEEP

      6144:Hs+IN9RS6LTa9Ar37L2We1zwYVlEkdqY/nMmS6H5el8BJN:MHMwm9AHebVKkdrH5eyr

    • Modifies WinLogon for persistence

    • simda

      Simda is an infostealer written in C++.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Modifies WinLogon

MITRE ATT&CK Enterprise v15

Tasks