Overview

overview

10

Static

static

5

8f90c69369...71.exe

windows7-x64

10

8f90c69369...71.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8f90c693697e398be1d428a8d3fecb8404d8c72f89ea8348fd1e4ef78cc7c571.exe

  • Size

    29KB

  • Sample

    241123-k8hz7aslgv

  • MD5

    8d7810cf6c4fed7b6e5c04c272ab35f6

  • SHA1

    ea04e4ff3f7fdec4b44d0b317257ad0dd6cf2ea7

  • SHA256

    8f90c693697e398be1d428a8d3fecb8404d8c72f89ea8348fd1e4ef78cc7c571

  • SHA512

    df3aa195de1e77234cb9a4975b3bf1e490f54df8c1ae84b89fef0d121240984103a0d044da25460c935cdef18d8bd879e325da9aa760e07fb786b35c49b993e1

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/fuI:AEwVs+0jNDY1qi/qF

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      8f90c693697e398be1d428a8d3fecb8404d8c72f89ea8348fd1e4ef78cc7c571.exe

    • Size

      29KB

    • MD5

      8d7810cf6c4fed7b6e5c04c272ab35f6

    • SHA1

      ea04e4ff3f7fdec4b44d0b317257ad0dd6cf2ea7

    • SHA256

      8f90c693697e398be1d428a8d3fecb8404d8c72f89ea8348fd1e4ef78cc7c571

    • SHA512

      df3aa195de1e77234cb9a4975b3bf1e490f54df8c1ae84b89fef0d121240984103a0d044da25460c935cdef18d8bd879e325da9aa760e07fb786b35c49b993e1

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/fuI:AEwVs+0jNDY1qi/qF

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks