mydoom | 55d7e3c04f0d1f16254dcdeb61acd06e7afc054223797591ef6e5da942035c30 | Triage

Submit
Reports

Overview

overview

Static

static

c898b1075d...18.exe

windows10-2004-x64

Resubmissions

29/08/2024, 09:56

240829-lyhgcaxenn 10

29/08/2024, 09:53

240829-lwqd6svfme 10

Sharing

Copy URL Twitter E-mail

General

Target

c898b1075d6b405a79d0c0a506316c0a_JaffaCakes118
Size

40KB
Sample

240829-lyhgcaxenn
MD5

c898b1075d6b405a79d0c0a506316c0a
SHA1

e8172f5035c58de06c77363743667765cae1abd6
SHA256

55d7e3c04f0d1f16254dcdeb61acd06e7afc054223797591ef6e5da942035c30
SHA512

fdc5dbdd0f53fe0f62ccb018c94ccf657519e2c7dd95ef256f02676726ad0945579588b9e4c9e9b0abb8e5cfd304263c94b1fa0055bd9b37519618c5fcf411b8
SSDEEP

768:aq9m/ZsybSg2ts4L3RLc/qjhsKmHbk1+qJ0UtHQB:aqk/Zdic/qjh8w19JDH8

Score

10^/10

mydoom discovery persistence upx worm

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

c898b1075d6b405a79d0c0a506316c0a_JaffaCakes118.exe

Resource

win10v2004-20240802-en

mydoom discovery persistence upx worm

windows10-2004-x64

19 signatures

150 seconds

Malware Config

Targets

- Target
  
  c898b1075d6b405a79d0c0a506316c0a_JaffaCakes118
- Size
  
  40KB
- MD5
  
  c898b1075d6b405a79d0c0a506316c0a
- SHA1
  
  e8172f5035c58de06c77363743667765cae1abd6
- SHA256
  
  55d7e3c04f0d1f16254dcdeb61acd06e7afc054223797591ef6e5da942035c30
- SHA512
  
  fdc5dbdd0f53fe0f62ccb018c94ccf657519e2c7dd95ef256f02676726ad0945579588b9e4c9e9b0abb8e5cfd304263c94b1fa0055bd9b37519618c5fcf411b8
- SSDEEP
  
  768:aq9m/ZsybSg2ts4L3RLc/qjhsKmHbk1+qJ0UtHQB:aqk/Zdic/qjh8w19JDH8
Score

10^/10

mydoom discovery persistence upx worm
- Detects MyDoom family
- MyDoom
  MyDoom is a Worm that is written in C++.
  worm mydoom
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mydoomdiscoverypersistenceupxworm

© 2018-2025

Terms | Privacy