mydoom | 90120afbb280ede78d5886614ef13244846523aa7810eb827254d86a9ad5ea74 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

db57f2b2e6...18.exe

windows7-x64

db57f2b2e6...18.exe

windows10-2004-x64

Sharing

General

Target

db57f2b2e6bede26b759102b1147298d_JaffaCakes118
Size

39KB
Sample

240911-2jfl7sxcjd
MD5

db57f2b2e6bede26b759102b1147298d
SHA1

314d5351aa4ace99551d1e2363dc729b9a126d82
SHA256

90120afbb280ede78d5886614ef13244846523aa7810eb827254d86a9ad5ea74
SHA512

addee782122c41ff45077395091151047a4cef6d46886c3366dc817ed450bf1f300eb324e00f5f568b172faf0c17cc127abd9b26fb88694d61ef853b6ea4c75a
SSDEEP

768:/EU07c92/EyTAYtxqfGNC0klI7C8yOvi3eHEXMsFAsF:/g7wc1aGNC0klI7CPN31Fb

Score

10^/10

mydoom discovery persistence worm

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

db57f2b2e6bede26b759102b1147298d_JaffaCakes118.exe

Resource

win7-20240903-en

mydoom discovery persistence worm

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

db57f2b2e6bede26b759102b1147298d_JaffaCakes118.exe

Resource

win10v2004-20240802-en

mydoom discovery persistence worm

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  db57f2b2e6bede26b759102b1147298d_JaffaCakes118
- Size
  
  39KB
- MD5
  
  db57f2b2e6bede26b759102b1147298d
- SHA1
  
  314d5351aa4ace99551d1e2363dc729b9a126d82
- SHA256
  
  90120afbb280ede78d5886614ef13244846523aa7810eb827254d86a9ad5ea74
- SHA512
  
  addee782122c41ff45077395091151047a4cef6d46886c3366dc817ed450bf1f300eb324e00f5f568b172faf0c17cc127abd9b26fb88694d61ef853b6ea4c75a
- SSDEEP
  
  768:/EU07c92/EyTAYtxqfGNC0klI7C8yOvi3eHEXMsFAsF:/g7wc1aGNC0klI7CPN31Fb
Score

10^/10

mydoom discovery persistence worm
- Detects MyDoom family
- MyDoom
  MyDoom is a Worm that is written in C++.
  worm mydoom
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mydoomdiscoverypersistenceworm

behavioral2

mydoomdiscoverypersistenceworm

© 2018-2025

Terms | Privacy