Overview

overview

10

Static

static

10

991038a75b...18.exe

windows7-x64

10

991038a75b...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    991038a75bec910235890b5e97eaa627_JaffaCakes118

  • Size

    28KB

  • Sample

    241125-eh3zsasrgn

  • MD5

    991038a75bec910235890b5e97eaa627

  • SHA1

    d6f87d8120350e03be7716e2c7e7f9c11944a5a8

  • SHA256

    148bf58fbae9758eb8f4068974a61dd52c18cd3ebec3bd2358bc1c60f8ad54b6

  • SHA512

    4885c1e32faf0780279c8a75514349996a14d0a0e6f9e959f823a5b0e610350373e90fd8653905c93b2a6943fca93f5962b13619cc86f98a1560044a2fabf091

  • SSDEEP

    384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNb7:Dv8IRRdsxq1DjJcqfo

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      991038a75bec910235890b5e97eaa627_JaffaCakes118

    • Size

      28KB

    • MD5

      991038a75bec910235890b5e97eaa627

    • SHA1

      d6f87d8120350e03be7716e2c7e7f9c11944a5a8

    • SHA256

      148bf58fbae9758eb8f4068974a61dd52c18cd3ebec3bd2358bc1c60f8ad54b6

    • SHA512

      4885c1e32faf0780279c8a75514349996a14d0a0e6f9e959f823a5b0e610350373e90fd8653905c93b2a6943fca93f5962b13619cc86f98a1560044a2fabf091

    • SSDEEP

      384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNb7:Dv8IRRdsxq1DjJcqfo

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks