Overview

overview

10

Static

static

10

2a5abf9ccc...18.exe

windows7-x64

10

2a5abf9ccc...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2a5abf9ccc0aa32fe09721294055bf20_JaffaCakes118

  • Size

    49KB

  • Sample

    241009-efs2sstanp

  • MD5

    2a5abf9ccc0aa32fe09721294055bf20

  • SHA1

    d1571cca82f455d7812056f422efae8a2f72e305

  • SHA256

    e2e073fc48e7613cdc9099dcb3ad3616cac8cf70937278f2a7c9eb2cbdb8a604

  • SHA512

    4326381cbc8108c1f1a59d5a4bd38459d1b908e9bc4f59fface1b3dfe35eb4f7af84f083d2fe67a20f17a2853249990998afa674787e054a3ef30872255998f6

  • SSDEEP

    768:SCIqdH/k1ZVcT194jp47ED89II2fF4fRXcMUgpMuLwXejrLjUQUx6:SNqaLV8a67myIISgpM6wXenLlw6

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      2a5abf9ccc0aa32fe09721294055bf20_JaffaCakes118

    • Size

      49KB

    • MD5

      2a5abf9ccc0aa32fe09721294055bf20

    • SHA1

      d1571cca82f455d7812056f422efae8a2f72e305

    • SHA256

      e2e073fc48e7613cdc9099dcb3ad3616cac8cf70937278f2a7c9eb2cbdb8a604

    • SHA512

      4326381cbc8108c1f1a59d5a4bd38459d1b908e9bc4f59fface1b3dfe35eb4f7af84f083d2fe67a20f17a2853249990998afa674787e054a3ef30872255998f6

    • SSDEEP

      768:SCIqdH/k1ZVcT194jp47ED89II2fF4fRXcMUgpMuLwXejrLjUQUx6:SNqaLV8a67myIISgpM6wXenLlw6

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks