Overview

overview

10

Static

static

5

f461074a91...a0.exe

windows7-x64

10

f461074a91...a0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f461074a91bdb721ec513bcd035d2a16ce4167da4fe80192b1c0d648432252a0

  • Size

    29KB

  • Sample

    241123-fx5btsyqht

  • MD5

    47260443715e0c3c13cf1dca827462d3

  • SHA1

    d41f6a94d016b23d9c7489652b37ada1e0e0e5a6

  • SHA256

    f461074a91bdb721ec513bcd035d2a16ce4167da4fe80192b1c0d648432252a0

  • SHA512

    4648a0ba4a784b1018f506d977f9402ce6f85c9c3b62d43945520bf10e6dc92d8d3d45cfbd483842c01fb6494e1ce761a64d55e2ccc6ea3d622154781bf1d3a7

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/R:AEwVs+0jNDY1qi/qp

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      f461074a91bdb721ec513bcd035d2a16ce4167da4fe80192b1c0d648432252a0

    • Size

      29KB

    • MD5

      47260443715e0c3c13cf1dca827462d3

    • SHA1

      d41f6a94d016b23d9c7489652b37ada1e0e0e5a6

    • SHA256

      f461074a91bdb721ec513bcd035d2a16ce4167da4fe80192b1c0d648432252a0

    • SHA512

      4648a0ba4a784b1018f506d977f9402ce6f85c9c3b62d43945520bf10e6dc92d8d3d45cfbd483842c01fb6494e1ce761a64d55e2ccc6ea3d622154781bf1d3a7

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/R:AEwVs+0jNDY1qi/qp

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks