Overview

overview

10

Static

static

5

85cb35a4a5...dN.exe

windows7-x64

10

85cb35a4a5...dN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    85cb35a4a5ac94e1a397423301095711ea0a65e2b197e04bdea912a9c179cecdN.exe

  • Size

    29KB

  • Sample

    241206-ysqlzs1kdn

  • MD5

    0de0480404eed11606b3e39e82e32ee0

  • SHA1

    b9ea540eeb5490dd678e775fd43217406eeab55f

  • SHA256

    85cb35a4a5ac94e1a397423301095711ea0a65e2b197e04bdea912a9c179cecd

  • SHA512

    52b91e8d9cd21690aa7904b4d6f8a369b5fdea4a6f58519eabc8d18d6a1502264f1f42d6af03d19b6aac1f51f1deefc0ab198e37edc196dd1b844a8551ced045

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/D:AEwVs+0jNDY1qi/q7

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      85cb35a4a5ac94e1a397423301095711ea0a65e2b197e04bdea912a9c179cecdN.exe

    • Size

      29KB

    • MD5

      0de0480404eed11606b3e39e82e32ee0

    • SHA1

      b9ea540eeb5490dd678e775fd43217406eeab55f

    • SHA256

      85cb35a4a5ac94e1a397423301095711ea0a65e2b197e04bdea912a9c179cecd

    • SHA512

      52b91e8d9cd21690aa7904b4d6f8a369b5fdea4a6f58519eabc8d18d6a1502264f1f42d6af03d19b6aac1f51f1deefc0ab198e37edc196dd1b844a8551ced045

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/D:AEwVs+0jNDY1qi/q7

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks