General

  • Target

    9923bcef356a01e6a4ea20c0f6c6e207_JaffaCakes118

  • Size

    253KB

  • Sample

    241125-etkbtatndl

  • MD5

    9923bcef356a01e6a4ea20c0f6c6e207

  • SHA1

    b54e8154bb95acd6975b0432c5685d422109de4c

  • SHA256

    a63ad831ff1dffc608b900af819287cac4a7ef69875bd5cdbe680f7db08d7412

  • SHA512

    0bd0d50bcbd9c60e047961a772ddefdc60b5b9c1e11b97c994ecf50023406e614a0ecafd56196eeecf9a036828183d31bad60b333b50122ab4c5aacf40850736

  • SSDEEP

    6144:X/wbFgTi2RsbXzeLjzOg/QQR9AXJChcl5hDfKJ39y9q+SvpY:X/wpxXMzfQQRqXiE5hjKneX

Malware Config

Extracted

Family

simda

Attributes
  • dga

    cihunemyror.eu

    digivehusyd.eu

    vofozymufok.eu

    fodakyhijyv.eu

    nopegymozow.eu

    gatedyhavyd.eu

    marytymenok.eu

    jewuqyjywyv.eu

    qeqinuqypoq.eu

    kemocujufys.eu

    rynazuqihoj.eu

    lyvejujolec.eu

    tucyguqaciq.eu

    xuxusujenes.eu

    puzutuqeqij.eu

    ciliqikytec.eu

    dikoniwudim.eu

    vojacikigep.eu

    fogeliwokih.eu

    nofyjikoxex.eu

    gadufiwabim.eu

    masisokemep.eu

    jepororyrih.eu

    qetoqolusex.eu

    keraborigin.eu

    ryqecolijet.eu

    lymylorozig.eu

    tunujolavez.eu

    xubifaremin.eu

    puvopalywet.eu

Targets

    • Target

      9923bcef356a01e6a4ea20c0f6c6e207_JaffaCakes118

    • Size

      253KB

    • MD5

      9923bcef356a01e6a4ea20c0f6c6e207

    • SHA1

      b54e8154bb95acd6975b0432c5685d422109de4c

    • SHA256

      a63ad831ff1dffc608b900af819287cac4a7ef69875bd5cdbe680f7db08d7412

    • SHA512

      0bd0d50bcbd9c60e047961a772ddefdc60b5b9c1e11b97c994ecf50023406e614a0ecafd56196eeecf9a036828183d31bad60b333b50122ab4c5aacf40850736

    • SSDEEP

      6144:X/wbFgTi2RsbXzeLjzOg/QQR9AXJChcl5hDfKJ39y9q+SvpY:X/wpxXMzfQQRqXiE5hjKneX

MITRE ATT&CK Enterprise v15

Tasks