Overview

overview

10

Static

static

5

fe8ac0ee16...0N.exe

windows7-x64

10

fe8ac0ee16...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fe8ac0ee16f17f79e35c571bc6e3e6a06b43ed13d9385544da4b0818d2108d50N.exe

  • Size

    41KB

  • Sample

    241206-elr2pavmej

  • MD5

    b52b1c66cae0b22a1bb4c5bce1e62910

  • SHA1

    f0b3fcdbd2a62bc6785265c74d8d5c32780d3bda

  • SHA256

    fe8ac0ee16f17f79e35c571bc6e3e6a06b43ed13d9385544da4b0818d2108d50

  • SHA512

    5ca577b7dab57431b49e3c361c6525d621ecf1d9d3840cd99daf2cd793a859b7ee9b0f4f0b952a0bf311c1aeecbddb217ed0ee088ae14d4575e2dcc8e386cd92

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/T:AEwVs+0jNDY1qi/q

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      fe8ac0ee16f17f79e35c571bc6e3e6a06b43ed13d9385544da4b0818d2108d50N.exe

    • Size

      41KB

    • MD5

      b52b1c66cae0b22a1bb4c5bce1e62910

    • SHA1

      f0b3fcdbd2a62bc6785265c74d8d5c32780d3bda

    • SHA256

      fe8ac0ee16f17f79e35c571bc6e3e6a06b43ed13d9385544da4b0818d2108d50

    • SHA512

      5ca577b7dab57431b49e3c361c6525d621ecf1d9d3840cd99daf2cd793a859b7ee9b0f4f0b952a0bf311c1aeecbddb217ed0ee088ae14d4575e2dcc8e386cd92

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/T:AEwVs+0jNDY1qi/q

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks