Overview

overview

10

Static

static

5

af9baa5dcf...3N.exe

windows7-x64

10

af9baa5dcf...3N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    af9baa5dcfb201e7f1fb6f79e264bfc9a4208b5a14482a363ca226bc1e226b33N

  • Size

    29KB

  • Sample

    241002-btq8kszfrl

  • MD5

    64d9a4002be10facc6b6bb57582a56c0

  • SHA1

    6f090abb21495b8dd0e18407bb25f9fa987e5eed

  • SHA256

    af9baa5dcfb201e7f1fb6f79e264bfc9a4208b5a14482a363ca226bc1e226b33

  • SHA512

    df4b6e9e09a231b50489c230a827ccfd53987b55c96294ea38d4f83202b804eea4e8b7ef94aed87341558895b7a4c9938dbf8c1d4de24fbbb9bb83c5fc178cbe

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/r+:AEwVs+0jNDY1qi/qi

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      af9baa5dcfb201e7f1fb6f79e264bfc9a4208b5a14482a363ca226bc1e226b33N

    • Size

      29KB

    • MD5

      64d9a4002be10facc6b6bb57582a56c0

    • SHA1

      6f090abb21495b8dd0e18407bb25f9fa987e5eed

    • SHA256

      af9baa5dcfb201e7f1fb6f79e264bfc9a4208b5a14482a363ca226bc1e226b33

    • SHA512

      df4b6e9e09a231b50489c230a827ccfd53987b55c96294ea38d4f83202b804eea4e8b7ef94aed87341558895b7a4c9938dbf8c1d4de24fbbb9bb83c5fc178cbe

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/r+:AEwVs+0jNDY1qi/qi

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks