mydoom | 5851085fd7c81bbd629d3145500cbbea1d499b80a044b5f1f2a736f66d0dd69b | Triage

Submit
Reports

Overview

overview

Static

static

7

Worm.Win32.Mydoom.exe

windows7-x64

Worm.Win32.Mydoom.exe

windows10-2004-x64

Sharing

General

Target

Worm.Win32.Mydoom.pz-5851085fd7c81bbd629d3145500cbbea1d499b80a044b5f1f2a736f66d0dd69bN
Size

41KB
Sample

240919-fd5s9a1gmc
MD5

b732c35773157dad9d09506d47577340
SHA1

76d64fff0f59b1bbcdba891fc4cf1dd851c462c0
SHA256

5851085fd7c81bbd629d3145500cbbea1d499b80a044b5f1f2a736f66d0dd69b
SHA512

b5600594bc4d012fa802d4e49d37da496a67c7c0193658031b65e3fdc72724fda6c86068a62f82bd063ee04fc812a9cf9cd5a550bf4cd72a761b33ce73d28940
SSDEEP

768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/6:AEwVs+0jNDY1qi/q

Score

10^/10

mydoom discovery persistence upx worm

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Worm.Win32.Mydoom.exe

Resource

win7-20240708-en

mydoom discovery persistence upx worm

windows7-x64

8 signatures

120 seconds

Behavioral task

behavioral2

Sample

Worm.Win32.Mydoom.exe

Resource

win10v2004-20240802-en

mydoom discovery persistence upx worm

windows10-2004-x64

8 signatures

120 seconds

Malware Config

Targets

- Target
  
  Worm.Win32.Mydoom.pz-5851085fd7c81bbd629d3145500cbbea1d499b80a044b5f1f2a736f66d0dd69bN
- Size
  
  41KB
- MD5
  
  b732c35773157dad9d09506d47577340
- SHA1
  
  76d64fff0f59b1bbcdba891fc4cf1dd851c462c0
- SHA256
  
  5851085fd7c81bbd629d3145500cbbea1d499b80a044b5f1f2a736f66d0dd69b
- SHA512
  
  b5600594bc4d012fa802d4e49d37da496a67c7c0193658031b65e3fdc72724fda6c86068a62f82bd063ee04fc812a9cf9cd5a550bf4cd72a761b33ce73d28940
- SSDEEP
  
  768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/6:AEwVs+0jNDY1qi/q
Score

10^/10

mydoom discovery persistence upx worm
- Detects MyDoom family
- MyDoom
  MyDoom is a Worm that is written in C++.
  worm mydoom
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

mydoomdiscoverypersistenceupxworm

behavioral2

mydoomdiscoverypersistenceupxworm

© 2018-2024

Terms | Privacy