Overview

overview

10

Static

static

10

9e3ffd6876...18.exe

windows7-x64

10

9e3ffd6876...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    9e3ffd6876b9afa71a0ab2b8e226f3ed_JaffaCakes118

  • Size

    49KB

  • Sample

    241125-2cpxaszkcw

  • MD5

    9e3ffd6876b9afa71a0ab2b8e226f3ed

  • SHA1

    ea7f3eeaa8d8b0092c3d6ba36b95a58e746b7cfb

  • SHA256

    6192fd11d5d6f45071d277c2b0e76911a1ab463bc49dda909f684e3ea55a69e7

  • SHA512

    34e1358d1bc606ec15790f11f9665d8d92e81658c23b06bbb99213f6e6e1d1a9b10908983a0c48d2c0195c98fb5983739dba0da73a943b649d707b945fa6433b

  • SSDEEP

    768:SCIqdH/k1ZVcT194jp4txxXZbXvnxlqMNgqWIQFqxTB+GZvDDhsf/hFyY8n:SNqaLV8a6txldxlqMNhv4Q+Gx9W/2zn

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      9e3ffd6876b9afa71a0ab2b8e226f3ed_JaffaCakes118

    • Size

      49KB

    • MD5

      9e3ffd6876b9afa71a0ab2b8e226f3ed

    • SHA1

      ea7f3eeaa8d8b0092c3d6ba36b95a58e746b7cfb

    • SHA256

      6192fd11d5d6f45071d277c2b0e76911a1ab463bc49dda909f684e3ea55a69e7

    • SHA512

      34e1358d1bc606ec15790f11f9665d8d92e81658c23b06bbb99213f6e6e1d1a9b10908983a0c48d2c0195c98fb5983739dba0da73a943b649d707b945fa6433b

    • SSDEEP

      768:SCIqdH/k1ZVcT194jp4txxXZbXvnxlqMNgqWIQFqxTB+GZvDDhsf/hFyY8n:SNqaLV8a6txldxlqMNhv4Q+Gx9W/2zn

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks