Overview

overview

10

Static

static

5

46cdb81aeb...cN.exe

windows7-x64

10

46cdb81aeb...cN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    46cdb81aebf6e77c3d8a9b91d2e94e4b4732047713a4f06cec840b8211dc790cN.exe

  • Size

    29KB

  • Sample

    241207-2hqe1ssqdl

  • MD5

    1e2c686cdcc5d92333c4e18dd7b468e0

  • SHA1

    525ca982a20b62aaa4336e47ead4d1f2883948ce

  • SHA256

    46cdb81aebf6e77c3d8a9b91d2e94e4b4732047713a4f06cec840b8211dc790c

  • SHA512

    1b5297c3b5875ac6158d0bf6d344ef6e2a9d229fe9ff8be64f0fa37106f46b0418bcf22118ccd18f80b512a48e1e2d899077c401d5ae0c3dce67a018ad436b54

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/B:AEwVs+0jNDY1qi/qp

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      46cdb81aebf6e77c3d8a9b91d2e94e4b4732047713a4f06cec840b8211dc790cN.exe

    • Size

      29KB

    • MD5

      1e2c686cdcc5d92333c4e18dd7b468e0

    • SHA1

      525ca982a20b62aaa4336e47ead4d1f2883948ce

    • SHA256

      46cdb81aebf6e77c3d8a9b91d2e94e4b4732047713a4f06cec840b8211dc790c

    • SHA512

      1b5297c3b5875ac6158d0bf6d344ef6e2a9d229fe9ff8be64f0fa37106f46b0418bcf22118ccd18f80b512a48e1e2d899077c401d5ae0c3dce67a018ad436b54

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/B:AEwVs+0jNDY1qi/qp

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks