Overview

overview

10

Static

static

5

a6f798d296...4N.exe

windows7-x64

10

a6f798d296...4N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a6f798d29621f3f9a5fd2123639206b02af8b94c6c7efc2975ddaf09eb11d974N

  • Size

    29KB

  • Sample

    240929-2cr2natakp

  • MD5

    4546b151828ea3160fe7ef27d2452d40

  • SHA1

    d86a0f1682f66658010d802d65920180c936b70f

  • SHA256

    a6f798d29621f3f9a5fd2123639206b02af8b94c6c7efc2975ddaf09eb11d974

  • SHA512

    ff04430ca8356cfed1cebdd4f9a2ab596743b88bd25e212e9dcf330b74eef82a6efc3d557c01424f0722d05aa7e1f85b2c9f2eb6357d4eff7ab225a495e2d701

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/BL:AEwVs+0jNDY1qi/qpL

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      a6f798d29621f3f9a5fd2123639206b02af8b94c6c7efc2975ddaf09eb11d974N

    • Size

      29KB

    • MD5

      4546b151828ea3160fe7ef27d2452d40

    • SHA1

      d86a0f1682f66658010d802d65920180c936b70f

    • SHA256

      a6f798d29621f3f9a5fd2123639206b02af8b94c6c7efc2975ddaf09eb11d974

    • SHA512

      ff04430ca8356cfed1cebdd4f9a2ab596743b88bd25e212e9dcf330b74eef82a6efc3d557c01424f0722d05aa7e1f85b2c9f2eb6357d4eff7ab225a495e2d701

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/BL:AEwVs+0jNDY1qi/qpL

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks