Overview

overview

10

Static

static

10

d0731d88eb...18.exe

windows7-x64

10

d0731d88eb...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d0731d88ebc68cf77ab0e6cd0a2fb6a5_JaffaCakes118

  • Size

    28KB

  • Sample

    241207-d18gjszlaj

  • MD5

    d0731d88ebc68cf77ab0e6cd0a2fb6a5

  • SHA1

    4e1207866e30a01419a44ab9c9a46dcec668a02a

  • SHA256

    18298bc91cb3f97be0ace1a3794cea625e226c6a4522ed3d4fbdacb9788f3886

  • SHA512

    575105dbeb0b2e1d8e12417f9ec38b561e26bea8adf195aff53d46f49c50b875fc312be70089ccbcfc3e37622e9a7412ed3cf1323980908b43ceb84cc914a1de

  • SSDEEP

    384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyN60:Dv8IRRdsxq1DjJcqf70

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      d0731d88ebc68cf77ab0e6cd0a2fb6a5_JaffaCakes118

    • Size

      28KB

    • MD5

      d0731d88ebc68cf77ab0e6cd0a2fb6a5

    • SHA1

      4e1207866e30a01419a44ab9c9a46dcec668a02a

    • SHA256

      18298bc91cb3f97be0ace1a3794cea625e226c6a4522ed3d4fbdacb9788f3886

    • SHA512

      575105dbeb0b2e1d8e12417f9ec38b561e26bea8adf195aff53d46f49c50b875fc312be70089ccbcfc3e37622e9a7412ed3cf1323980908b43ceb84cc914a1de

    • SSDEEP

      384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyN60:Dv8IRRdsxq1DjJcqf70

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks