mydoom | c442e5b6eb272b875c490acec3b6953d4be0b70bb1dbc1791154deff3c6152eb | Triage

Submit
Reports

Overview

overview

Static

static

c442e5b6eb...eb.exe

windows7-x64

c442e5b6eb...eb.exe

windows10-2004-x64

Sharing

General

Target

c442e5b6eb272b875c490acec3b6953d4be0b70bb1dbc1791154deff3c6152eb.exe
Size

23KB
Sample

241123-f3hd9ayrfv
MD5

c35529caf5fa4afd3eda1751dc343d2c
SHA1

a1846e9d351cb2dbb6be39bbb99cc581a2aea2a3
SHA256

c442e5b6eb272b875c490acec3b6953d4be0b70bb1dbc1791154deff3c6152eb
SHA512

53f2877d781d3a103c6e43d0cf34a0dc000d027f59d8f41a2fad2345ecfd12fd3c01d4cc29f30878041e37f927929712d2df6f368a860fa7d2bba3a354a95f3b
SSDEEP

384:FZcpzCIqdG3A3WUkx38GZDJuJbf1+o44u8gHzU0Zm91m9d:SCIqdH/k1ZVcT194jp400Yd

Score

10^/10

mydoom discovery persistence upx worm

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

c442e5b6eb272b875c490acec3b6953d4be0b70bb1dbc1791154deff3c6152eb.exe

Resource

win7-20240729-en

mydoom discovery persistence upx worm

windows7-x64

8 signatures

120 seconds

Behavioral task

behavioral2

Sample

c442e5b6eb272b875c490acec3b6953d4be0b70bb1dbc1791154deff3c6152eb.exe

Resource

win10v2004-20241007-en

mydoom discovery persistence upx worm

windows10-2004-x64

8 signatures

120 seconds

Malware Config

Targets

- Target
  
  c442e5b6eb272b875c490acec3b6953d4be0b70bb1dbc1791154deff3c6152eb.exe
- Size
  
  23KB
- MD5
  
  c35529caf5fa4afd3eda1751dc343d2c
- SHA1
  
  a1846e9d351cb2dbb6be39bbb99cc581a2aea2a3
- SHA256
  
  c442e5b6eb272b875c490acec3b6953d4be0b70bb1dbc1791154deff3c6152eb
- SHA512
  
  53f2877d781d3a103c6e43d0cf34a0dc000d027f59d8f41a2fad2345ecfd12fd3c01d4cc29f30878041e37f927929712d2df6f368a860fa7d2bba3a354a95f3b
- SSDEEP
  
  384:FZcpzCIqdG3A3WUkx38GZDJuJbf1+o44u8gHzU0Zm91m9d:SCIqdH/k1ZVcT194jp400Yd
Score

10^/10

mydoom discovery persistence upx worm
- Detects MyDoom family
- MyDoom
  MyDoom is a Worm that is written in C++.
  worm mydoom
- Mydoom family
  mydoom
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mydoomdiscoverypersistenceupxworm

behavioral2

mydoomdiscoverypersistenceupxworm

© 2018-2024

Terms | Privacy