Overview

overview

10

Static

static

10

90a053b07e...18.exe

windows7-x64

10

90a053b07e...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    90a053b07e180e0e90479104c3c4aab7_JaffaCakes118

  • Size

    35KB

  • Sample

    241123-zsme1awlhv

  • MD5

    90a053b07e180e0e90479104c3c4aab7

  • SHA1

    a6dac9b00693ac4aff8232ef933be123035d512d

  • SHA256

    84b57991d3c0972e9455df94bd4de896c9bca4142a813c3996c99f8b3e976af9

  • SHA512

    a46663b9b371723b552f6fe8dbf4fac778ca4e53e7d0e85f0910c8f7d6206b829b5bb3ce9c1c73ebd78c1f3e13a88bc83a838e5f088dac9b91a9a04658fad951

  • SSDEEP

    768:SCIqdH/k1ZVcT194jp47x6DYjRItwTMyZ+KPNPo:SNqaLV8a6ANQZZS

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      90a053b07e180e0e90479104c3c4aab7_JaffaCakes118

    • Size

      35KB

    • MD5

      90a053b07e180e0e90479104c3c4aab7

    • SHA1

      a6dac9b00693ac4aff8232ef933be123035d512d

    • SHA256

      84b57991d3c0972e9455df94bd4de896c9bca4142a813c3996c99f8b3e976af9

    • SHA512

      a46663b9b371723b552f6fe8dbf4fac778ca4e53e7d0e85f0910c8f7d6206b829b5bb3ce9c1c73ebd78c1f3e13a88bc83a838e5f088dac9b91a9a04658fad951

    • SSDEEP

      768:SCIqdH/k1ZVcT194jp47x6DYjRItwTMyZ+KPNPo:SNqaLV8a6ANQZZS

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks