Overview

overview

10

Static

static

7

Worm.Win32.Mydoom.exe

windows7-x64

10

Worm.Win32.Mydoom.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Worm.Win32.Mydoom.pz-3b486168388e5176f890d1e706c1c0cfe738758fc10a34d036df693275963031N

  • Size

    41KB

  • Sample

    240919-ewty2a1brm

  • MD5

    193d0a244c8df9d48e37e8c0de694790

  • SHA1

    61ad5f4bf01f8ed36a4ccef66be6ee440b0bcfa7

  • SHA256

    3b486168388e5176f890d1e706c1c0cfe738758fc10a34d036df693275963031

  • SHA512

    00cef3add273e01306421d5600fc960a98b333ff1d6756704aa39cec993750f012d740c880ceb2a9db2f7d63f4be461d2ca5335bde2705a67d2854376a78f8ad

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/:AEwVs+0jNDY1qi/q

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      Worm.Win32.Mydoom.pz-3b486168388e5176f890d1e706c1c0cfe738758fc10a34d036df693275963031N

    • Size

      41KB

    • MD5

      193d0a244c8df9d48e37e8c0de694790

    • SHA1

      61ad5f4bf01f8ed36a4ccef66be6ee440b0bcfa7

    • SHA256

      3b486168388e5176f890d1e706c1c0cfe738758fc10a34d036df693275963031

    • SHA512

      00cef3add273e01306421d5600fc960a98b333ff1d6756704aa39cec993750f012d740c880ceb2a9db2f7d63f4be461d2ca5335bde2705a67d2854376a78f8ad

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/:AEwVs+0jNDY1qi/q

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks