mydoom | 00d823b03a90ed6b429c1070383997dbb5989175130a9e8c0b998853830fc4d0 | Triage

Submit
Reports

Overview

overview

Static

static

00d823b03a...d0.exe

windows7-x64

00d823b03a...d0.exe

windows10-2004-x64

Sharing

General

Target

00d823b03a90ed6b429c1070383997dbb5989175130a9e8c0b998853830fc4d0
Size

50KB
Sample

241122-xye7rswqhv
MD5

721238198bd25447d3245d4112ffa54f
SHA1

380b467f81c3adf95c36db23ee786015db119d07
SHA256

00d823b03a90ed6b429c1070383997dbb5989175130a9e8c0b998853830fc4d0
SHA512

d456c271fee084e21100128dfaa077b3df3d38bb57f54af5ca0f6315926749b089753a9ded1812522f4ad3b7cbbd6a450ec608f71bf955fe05c2a45d379f2ac8
SSDEEP

768:/EU07c92/EyTAYtxqfGNC0klI7C8yOvi3eGYzbZoxf4AfnxWnksrHRXUHQTH:/g7wc1aGNC0klI7CPN3BcVoOAfn4dcQb

Score

10^/10

mydoom discovery persistence worm

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

00d823b03a90ed6b429c1070383997dbb5989175130a9e8c0b998853830fc4d0.exe

Resource

win7-20240903-en

mydoom discovery persistence worm

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

00d823b03a90ed6b429c1070383997dbb5989175130a9e8c0b998853830fc4d0.exe

Resource

win10v2004-20241007-en

mydoom discovery persistence worm

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  00d823b03a90ed6b429c1070383997dbb5989175130a9e8c0b998853830fc4d0
- Size
  
  50KB
- MD5
  
  721238198bd25447d3245d4112ffa54f
- SHA1
  
  380b467f81c3adf95c36db23ee786015db119d07
- SHA256
  
  00d823b03a90ed6b429c1070383997dbb5989175130a9e8c0b998853830fc4d0
- SHA512
  
  d456c271fee084e21100128dfaa077b3df3d38bb57f54af5ca0f6315926749b089753a9ded1812522f4ad3b7cbbd6a450ec608f71bf955fe05c2a45d379f2ac8
- SSDEEP
  
  768:/EU07c92/EyTAYtxqfGNC0klI7C8yOvi3eGYzbZoxf4AfnxWnksrHRXUHQTH:/g7wc1aGNC0klI7CPN3BcVoOAfn4dcQb
Score

10^/10

mydoom discovery persistence worm
- Detects MyDoom family
- MyDoom
  MyDoom is a Worm that is written in C++.
  worm mydoom
- Mydoom family
  mydoom
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mydoomdiscoverypersistenceworm

behavioral2

mydoomdiscoverypersistenceworm

© 2018-2024

Terms | Privacy