Overview

overview

10

Static

static

5

09013dbbc9...eN.exe

windows7-x64

10

09013dbbc9...eN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    09013dbbc91ac6459517ba7781fc73d18090140f465921d305ebcd317052896eN.exe

  • Size

    29KB

  • Sample

    241208-dzkn4azpay

  • MD5

    4636f226bc1174fc13740bc0d9beb6a0

  • SHA1

    e5833db5574c9b49dc72d808b2604038ca823e62

  • SHA256

    09013dbbc91ac6459517ba7781fc73d18090140f465921d305ebcd317052896e

  • SHA512

    f01ecbc08f61db3fa745bace95ffb6b7806f46fd3a18aa61db0a940880d07756498ac3bec916d40711387dc9420763698cb7260c37bbf11860804a3c1cac675c

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/Y:AEwVs+0jNDY1qi/qQ

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      09013dbbc91ac6459517ba7781fc73d18090140f465921d305ebcd317052896eN.exe

    • Size

      29KB

    • MD5

      4636f226bc1174fc13740bc0d9beb6a0

    • SHA1

      e5833db5574c9b49dc72d808b2604038ca823e62

    • SHA256

      09013dbbc91ac6459517ba7781fc73d18090140f465921d305ebcd317052896e

    • SHA512

      f01ecbc08f61db3fa745bace95ffb6b7806f46fd3a18aa61db0a940880d07756498ac3bec916d40711387dc9420763698cb7260c37bbf11860804a3c1cac675c

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/Y:AEwVs+0jNDY1qi/qQ

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks