Overview

overview

10

Static

static

10

9d678bba04...18.exe

windows7-x64

10

9d678bba04...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    9d678bba0445c38ad52aa0434181c37e_JaffaCakes118

  • Size

    33KB

  • Sample

    241125-xya8taykck

  • MD5

    9d678bba0445c38ad52aa0434181c37e

  • SHA1

    84be454670a74e0d6aa4e982710569e13ed786fc

  • SHA256

    cad27d1177b509948dbe6629e3d4fff101f0739282399336feb1fb365e86e9b4

  • SHA512

    6c48dc0b5a4fb3b63b01233dc8d6c4b80565ad99b4ce37951bbca45bc0455612150c85303d541ca73475ff19bc3ad788d6407a54eea8e15b2a3936784032cbe5

  • SSDEEP

    384:FZcpzCIqdG3A3WUkx38GZDJuJbf1+o44u8gHzULhUPXhvkW8uaYIgNxdP+nL/7OR:SCIqdH/k1ZVcT194jp42HT9NQyNjh

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      9d678bba0445c38ad52aa0434181c37e_JaffaCakes118

    • Size

      33KB

    • MD5

      9d678bba0445c38ad52aa0434181c37e

    • SHA1

      84be454670a74e0d6aa4e982710569e13ed786fc

    • SHA256

      cad27d1177b509948dbe6629e3d4fff101f0739282399336feb1fb365e86e9b4

    • SHA512

      6c48dc0b5a4fb3b63b01233dc8d6c4b80565ad99b4ce37951bbca45bc0455612150c85303d541ca73475ff19bc3ad788d6407a54eea8e15b2a3936784032cbe5

    • SSDEEP

      384:FZcpzCIqdG3A3WUkx38GZDJuJbf1+o44u8gHzULhUPXhvkW8uaYIgNxdP+nL/7OR:SCIqdH/k1ZVcT194jp42HT9NQyNjh

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks