Overview

overview

10

Static

static

7

9944b806c7...c0.exe

windows7-x64

10

9944b806c7...c0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9944b806c76a0d3e20df9f54a94072d8de050095e2b0b53990eef36f404d05c0.exe

  • Size

    41KB

  • Sample

    240908-d5yg5stdrj

  • MD5

    feed54483d11b3c284073f85de912316

  • SHA1

    bc38df534b19c5485f3f1eb7e23aa09289eb4dc3

  • SHA256

    9944b806c76a0d3e20df9f54a94072d8de050095e2b0b53990eef36f404d05c0

  • SHA512

    edd0a6a607c15132b42f73dbe5ac517391c72a1ad24293cffe8911b03a1f1cf53d80f8de5a870f1b3e0caff5f8da12374d556f35180733025e837fd783bf7ee8

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/i:AEwVs+0jNDY1qi/qa

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      9944b806c76a0d3e20df9f54a94072d8de050095e2b0b53990eef36f404d05c0.exe

    • Size

      41KB

    • MD5

      feed54483d11b3c284073f85de912316

    • SHA1

      bc38df534b19c5485f3f1eb7e23aa09289eb4dc3

    • SHA256

      9944b806c76a0d3e20df9f54a94072d8de050095e2b0b53990eef36f404d05c0

    • SHA512

      edd0a6a607c15132b42f73dbe5ac517391c72a1ad24293cffe8911b03a1f1cf53d80f8de5a870f1b3e0caff5f8da12374d556f35180733025e837fd783bf7ee8

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/i:AEwVs+0jNDY1qi/qa

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks