General

  • Target

    be4e145a2a8475425b6e6eee4556a816e8238090ca7ff5df1cd1b8ddd39b7519N.exe

  • Size

    218KB

  • Sample

    241124-wsl8fsykeq

  • MD5

    54ce2381395b894529b792d69d145a70

  • SHA1

    0d55cc3c2b156b76881f4baac5fd8cad12f84f0d

  • SHA256

    be4e145a2a8475425b6e6eee4556a816e8238090ca7ff5df1cd1b8ddd39b7519

  • SHA512

    54b435cac594a0107bfac0656941ddf1c04a157570964e3f66348148c19b80dd63566fabf0a77edb6bf0f07bd7010eaed95df9ff54cc098c8f19ccb0e7d87c15

  • SSDEEP

    3072:xvm4SZsQrNzPrl6rjGMjp39d4u8iqddCxMIJOb2o5DsBPjim6hwM2H6:11SyAJp6rjn1gOObn4b6h9h

Malware Config

Extracted

Family

simda

Attributes
  • dga

    gatyfus.com

    lyvyxor.com

    vojyqem.com

    qetyfuv.com

    puvyxil.com

    gahyqah.com

    lyryfyd.com

    vocyzit.com

    qegyqaq.com

    purydyv.com

    gacyzuz.com

    lygymoj.com

    vowydef.com

    qexylup.com

    pufymoq.com

    gaqydeb.com

    lyxylux.com

    vofymik.com

    qeqysag.com

    puzylyp.com

    gadyniw.com

    lymysan.com

    volykyc.com

    qedynul.com

    pumypog.com

    galykes.com

    lysynur.com

    vonypom.com

    qekykev.com

    pupybul.com

Targets

    • Target

      be4e145a2a8475425b6e6eee4556a816e8238090ca7ff5df1cd1b8ddd39b7519N.exe

    • Size

      218KB

    • MD5

      54ce2381395b894529b792d69d145a70

    • SHA1

      0d55cc3c2b156b76881f4baac5fd8cad12f84f0d

    • SHA256

      be4e145a2a8475425b6e6eee4556a816e8238090ca7ff5df1cd1b8ddd39b7519

    • SHA512

      54b435cac594a0107bfac0656941ddf1c04a157570964e3f66348148c19b80dd63566fabf0a77edb6bf0f07bd7010eaed95df9ff54cc098c8f19ccb0e7d87c15

    • SSDEEP

      3072:xvm4SZsQrNzPrl6rjGMjp39d4u8iqddCxMIJOb2o5DsBPjim6hwM2H6:11SyAJp6rjn1gOObn4b6h9h

MITRE ATT&CK Enterprise v15

Tasks