Overview

overview

10

Static

static

5

485fe6a91c...aN.exe

windows7-x64

10

485fe6a91c...aN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    485fe6a91c63d33e04b46de491afef227a8b5580b26aed6007d43d1c4764d1aaN.exe

  • Size

    29KB

  • Sample

    241122-sd63jaypbq

  • MD5

    71f533b221734ffdb40019a765e19990

  • SHA1

    bff873bd1faa136c84825376a46664fa1e63a93c

  • SHA256

    485fe6a91c63d33e04b46de491afef227a8b5580b26aed6007d43d1c4764d1aa

  • SHA512

    dc8e4f8d7d079db5c6f859abccbb1af52ee6d0d15289d5a6bb56edea9e259158649be904fceaa298e1d5b6275a01a5defac4e2fcfd0f8832bacdc47b0ff6dadc

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/x4:AEwVs+0jNDY1qi/q54

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      485fe6a91c63d33e04b46de491afef227a8b5580b26aed6007d43d1c4764d1aaN.exe

    • Size

      29KB

    • MD5

      71f533b221734ffdb40019a765e19990

    • SHA1

      bff873bd1faa136c84825376a46664fa1e63a93c

    • SHA256

      485fe6a91c63d33e04b46de491afef227a8b5580b26aed6007d43d1c4764d1aa

    • SHA512

      dc8e4f8d7d079db5c6f859abccbb1af52ee6d0d15289d5a6bb56edea9e259158649be904fceaa298e1d5b6275a01a5defac4e2fcfd0f8832bacdc47b0ff6dadc

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/x4:AEwVs+0jNDY1qi/q54

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks