General

  • Target

    b0440b01e4b20461fb27461df8947ff9e2e9dd03d31e3b958bda62f25cfe350c.exe

  • Size

    218KB

  • Sample

    250119-1jkqgsxpen

  • MD5

    2a042cf56e48876133b8947aced5b6ea

  • SHA1

    68d155fcc2851245d4c62759f06c22be04e4660d

  • SHA256

    b0440b01e4b20461fb27461df8947ff9e2e9dd03d31e3b958bda62f25cfe350c

  • SHA512

    2ce31ed7c770c082ae36f4c004ec350cd3471b53036d05fe8ea374e1e20e9bf3a0f8428274a450c90f9a9d6de61291259b92d687556c8949bca7c978c9b075d1

  • SSDEEP

    3072:Evm4SZsQrNzPrl6rjGMjp39d4u8iqddCxMIJOb2o5DsBPjim6hwM2Ha:S1SyAJp6rjn1gOObn4b6h9R

Malware Config

Extracted

Family

simda

Attributes
  • dga

    gatyfus.com

    lyvyxor.com

    vojyqem.com

    qetyfuv.com

    puvyxil.com

    gahyqah.com

    lyryfyd.com

    vocyzit.com

    qegyqaq.com

    purydyv.com

    gacyzuz.com

    lygymoj.com

    vowydef.com

    qexylup.com

    pufymoq.com

    gaqydeb.com

    lyxylux.com

    vofymik.com

    qeqysag.com

    puzylyp.com

    gadyniw.com

    lymysan.com

    volykyc.com

    qedynul.com

    pumypog.com

    galykes.com

    lysynur.com

    vonypom.com

    qekykev.com

    pupybul.com

Targets

    • Target

      b0440b01e4b20461fb27461df8947ff9e2e9dd03d31e3b958bda62f25cfe350c.exe

    • Size

      218KB

    • MD5

      2a042cf56e48876133b8947aced5b6ea

    • SHA1

      68d155fcc2851245d4c62759f06c22be04e4660d

    • SHA256

      b0440b01e4b20461fb27461df8947ff9e2e9dd03d31e3b958bda62f25cfe350c

    • SHA512

      2ce31ed7c770c082ae36f4c004ec350cd3471b53036d05fe8ea374e1e20e9bf3a0f8428274a450c90f9a9d6de61291259b92d687556c8949bca7c978c9b075d1

    • SSDEEP

      3072:Evm4SZsQrNzPrl6rjGMjp39d4u8iqddCxMIJOb2o5DsBPjim6hwM2Ha:S1SyAJp6rjn1gOObn4b6h9R

MITRE ATT&CK Enterprise v15

Tasks