mydoom | 9005ad98b9d0867939fb316d1d0e685fdbb8d5f5c6c3bca199e8806f2682a669 | Triage

Submit
Reports

Overview

overview

Static

static

5

9005ad98b9...9N.exe

windows7-x64

9005ad98b9...9N.exe

windows10-2004-x64

Sharing

General

Target

9005ad98b9d0867939fb316d1d0e685fdbb8d5f5c6c3bca199e8806f2682a669N
Size

29KB
Sample

241114-jl3weazjfm
MD5

4bbb1a617f6a57cb87ee7255259d7c10
SHA1

20305c3c9fcbf584dd3c743715157e9c64be12cf
SHA256

9005ad98b9d0867939fb316d1d0e685fdbb8d5f5c6c3bca199e8806f2682a669
SHA512

b072649af8b9c68e4ba1ec0342de9d3dd18b986f3c7536f6ee5d2860aa1d51cf333166ab3fe0dae21346324c3df824aa3a67eec8bef98d8d38c1762611bf055c
SSDEEP

768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/T:AEwVs+0jNDY1qi/qr

Score

10^/10

mydoom discovery persistence upx worm

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

9005ad98b9d0867939fb316d1d0e685fdbb8d5f5c6c3bca199e8806f2682a669N.exe

Resource

win7-20240903-en

mydoom discovery persistence upx worm

windows7-x64

9 signatures

120 seconds

Behavioral task

behavioral2

Sample

9005ad98b9d0867939fb316d1d0e685fdbb8d5f5c6c3bca199e8806f2682a669N.exe

Resource

win10v2004-20241007-en

mydoom discovery persistence upx worm

windows10-2004-x64

9 signatures

120 seconds

Malware Config

Targets

- Target
  
  9005ad98b9d0867939fb316d1d0e685fdbb8d5f5c6c3bca199e8806f2682a669N
- Size
  
  29KB
- MD5
  
  4bbb1a617f6a57cb87ee7255259d7c10
- SHA1
  
  20305c3c9fcbf584dd3c743715157e9c64be12cf
- SHA256
  
  9005ad98b9d0867939fb316d1d0e685fdbb8d5f5c6c3bca199e8806f2682a669
- SHA512
  
  b072649af8b9c68e4ba1ec0342de9d3dd18b986f3c7536f6ee5d2860aa1d51cf333166ab3fe0dae21346324c3df824aa3a67eec8bef98d8d38c1762611bf055c
- SSDEEP
  
  768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/T:AEwVs+0jNDY1qi/qr
Score

10^/10

mydoom discovery persistence upx worm
- Detects MyDoom family
- MyDoom
  MyDoom is a Worm that is written in C++.
  worm mydoom
- Mydoom family
  mydoom
- Executes dropped EXE
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mydoomdiscoverypersistenceupxworm

behavioral2

mydoomdiscoverypersistenceupxworm

© 2018-2024

Terms | Privacy