mydoom | 25a5ac0e537b58d7b2cea6143744cb33d88d5f46947ce26e0eb194f439da1952

General

Target

25a5ac0e537b58d7b2cea6143744cb33d88d5f46947ce26e0eb194f439da1952
Size

44KB
MD5

ec0063188c5b1f7a2e37ad9a44e70953
SHA1

97c2eb959d4a0efada51b74a66bf7f8e23536067
SHA256

25a5ac0e537b58d7b2cea6143744cb33d88d5f46947ce26e0eb194f439da1952
SHA512

a8ca0a935c24a05eb9ef3267c332dcd9c36f1d12518ce344412832be58062ffdf8625bf88cfea5a99ae324f63344890374504f3b3a3025e9f73355e94d3dbd2e
SSDEEP

768:6gCG7CEa3sDiNXk3Za7Udiun5ZUn81HjtaHXVsdQFN88xQ+pBxpfdXasn:AYwXRkYUQun5/HjtCN1xBnplqe

Score

10^/10

mydoom

Detects MyDoom family 1 IoCs

resource	yara_rule
static1/unpack001/04b388fc0c7bacdecd97bdce79bd8cb5b00b8973f82408c877f209b7aa279813	family_mydoom

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/04b388fc0c7bacdecd97bdce79bd8cb5b00b8973f82408c877f209b7aa279813

25a5ac0e537b58d7b2cea6143744cb33d88d5f46947ce26e0eb194f439da1952
.zip

Password: infected
04b388fc0c7bacdecd97bdce79bd8cb5b00b8973f82408c877f209b7aa279813
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ