mydoom | 3444f4b9e91ee49dfab83b551128192d02d1040bb243e296aecba3406736e618 | Triage

Submit
Reports

Overview

overview

Static

static

da8e852f97...18.exe

windows7-x64

da8e852f97...18.exe

windows10-2004-x64

Sharing

General

Target

da8e852f97ad71142328fd5a8fad1c14_JaffaCakes118
Size

28KB
Sample

241209-t54bdstpdw
MD5

da8e852f97ad71142328fd5a8fad1c14
SHA1

0de3c98a8ab698229dcc254a67ec508af533c6ea
SHA256

3444f4b9e91ee49dfab83b551128192d02d1040bb243e296aecba3406736e618
SHA512

f44f7be211d7ca76328e5272ebfa08624331a766f00c3c7341636e82be141656c89070a300029d21cd6c471911b01a8aa57fe808fd8d69b54215a3fd849fb93b
SSDEEP

384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNxFYlvKQ:Dv8IRRdsxq1DjJcqfeFYlvh

Score

10^/10

mydoom discovery persistence upx worm

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

da8e852f97ad71142328fd5a8fad1c14_JaffaCakes118.exe

Resource

win7-20240708-en

mydoom discovery persistence upx worm

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

da8e852f97ad71142328fd5a8fad1c14_JaffaCakes118.exe

Resource

win10v2004-20241007-en

mydoom discovery persistence upx worm

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  da8e852f97ad71142328fd5a8fad1c14_JaffaCakes118
- Size
  
  28KB
- MD5
  
  da8e852f97ad71142328fd5a8fad1c14
- SHA1
  
  0de3c98a8ab698229dcc254a67ec508af533c6ea
- SHA256
  
  3444f4b9e91ee49dfab83b551128192d02d1040bb243e296aecba3406736e618
- SHA512
  
  f44f7be211d7ca76328e5272ebfa08624331a766f00c3c7341636e82be141656c89070a300029d21cd6c471911b01a8aa57fe808fd8d69b54215a3fd849fb93b
- SSDEEP
  
  384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNxFYlvKQ:Dv8IRRdsxq1DjJcqfeFYlvh
Score

10^/10

mydoom discovery persistence upx worm
- Detects MyDoom family
- MyDoom
  MyDoom is a Worm that is written in C++.
  worm mydoom
- Mydoom family
  mydoom
- Executes dropped EXE
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mydoomdiscoverypersistenceupxworm

behavioral2

mydoomdiscoverypersistenceupxworm

© 2018-2024

Terms | Privacy