Overview

overview

10

Static

static

5

cd11fa8331...18.exe

windows7-x64

10

cd11fa8331...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cd11fa833168e33e185bd21238c7118e_JaffaCakes118

  • Size

    68KB

  • Sample

    241206-pypr7stndj

  • MD5

    cd11fa833168e33e185bd21238c7118e

  • SHA1

    3d2bd4769cfd972d4d7a9c30d12f685301b94b38

  • SHA256

    bd6757764f423d17155181c626cff5ff42c4a4270a4f0cff693a4a87cac42dbc

  • SHA512

    ed4239e08739fcd18199855413587c568f348c6e0cceaac1a073719cdb7bdc3bdaa7fd218febea19d4348819dc8de3a5082135c0ec178d104da0cc6371e1d45c

  • SSDEEP

    768:jv8IRRdsxq1DjJcqb4ZORE2t+/zCB3zNO31RBvphxkPeEXdLmux:DxRTsxq1DjClOR3KzmoTBvh6eEXNmu

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      cd11fa833168e33e185bd21238c7118e_JaffaCakes118

    • Size

      68KB

    • MD5

      cd11fa833168e33e185bd21238c7118e

    • SHA1

      3d2bd4769cfd972d4d7a9c30d12f685301b94b38

    • SHA256

      bd6757764f423d17155181c626cff5ff42c4a4270a4f0cff693a4a87cac42dbc

    • SHA512

      ed4239e08739fcd18199855413587c568f348c6e0cceaac1a073719cdb7bdc3bdaa7fd218febea19d4348819dc8de3a5082135c0ec178d104da0cc6371e1d45c

    • SSDEEP

      768:jv8IRRdsxq1DjJcqb4ZORE2t+/zCB3zNO31RBvphxkPeEXdLmux:DxRTsxq1DjClOR3KzmoTBvh6eEXNmu

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks