mydoom | 72cc07a6b10df3773b59b263c1176e09efea77a2679dd45c14d4526a2e50f8f2 | Triage

Submit
Reports

Overview

overview

Static

static

fc8647105b...18.exe

windows7-x64

fc8647105b...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

fc8647105b41a557a242de3f50d6c2f4_JaffaCakes118
Size

21KB
Sample

240928-r5zl4a1dmp
MD5

fc8647105b41a557a242de3f50d6c2f4
SHA1

4bb854369a505ac2ac601b83772a6a98bd66f107
SHA256

72cc07a6b10df3773b59b263c1176e09efea77a2679dd45c14d4526a2e50f8f2
SHA512

a33729fd5cdfa8a672185fe91cebfedbc48d0b103c197f166232ac0de040130210d44434ddf70b2374705ad77971f098d09afa0d9b60587c50f17b5398e11d27
SSDEEP

384:FZcpzCIqdG3A3WUkx38GZDJuJbf1+o44u8gHzUESy3Cc:SCIqdH/k1ZVcT194jp4E3t

Score

10^/10

mydoom discovery persistence upx worm

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

fc8647105b41a557a242de3f50d6c2f4_JaffaCakes118.exe

Resource

win7-20240903-en

mydoom discovery persistence upx worm

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

fc8647105b41a557a242de3f50d6c2f4_JaffaCakes118.exe

Resource

win10v2004-20240802-en

mydoom discovery persistence upx worm

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  fc8647105b41a557a242de3f50d6c2f4_JaffaCakes118
- Size
  
  21KB
- MD5
  
  fc8647105b41a557a242de3f50d6c2f4
- SHA1
  
  4bb854369a505ac2ac601b83772a6a98bd66f107
- SHA256
  
  72cc07a6b10df3773b59b263c1176e09efea77a2679dd45c14d4526a2e50f8f2
- SHA512
  
  a33729fd5cdfa8a672185fe91cebfedbc48d0b103c197f166232ac0de040130210d44434ddf70b2374705ad77971f098d09afa0d9b60587c50f17b5398e11d27
- SSDEEP
  
  384:FZcpzCIqdG3A3WUkx38GZDJuJbf1+o44u8gHzUESy3Cc:SCIqdH/k1ZVcT194jp4E3t
Score

10^/10

mydoom discovery persistence upx worm
- Detects MyDoom family
- MyDoom
  MyDoom is a Worm that is written in C++.
  worm mydoom
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mydoomdiscoverypersistenceupxworm

behavioral2

mydoomdiscoverypersistenceupxworm

© 2018-2025

Terms | Privacy