Overview

overview

10

Static

static

10

ddc9d492bd...18.exe

windows7-x64

10

ddc9d492bd...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ddc9d492bd17d9f4b2742a5414247d8c_JaffaCakes118

  • Size

    49KB

  • Sample

    241210-jzdtfavmgq

  • MD5

    ddc9d492bd17d9f4b2742a5414247d8c

  • SHA1

    e327d7d697936e0545420be9a28f8dfe63b25828

  • SHA256

    7688c875c922bab06805e6844f4b9ff868c3f010a4626d80ec452f5d4940a817

  • SHA512

    d5ce4ffad27f7040388e8429929910b817fc76753183bf504c2c505b43f0c8907832f1af227c04c0ca8abf79aaf91696ab00fe94be377c34a114e8ca8758a378

  • SSDEEP

    768:SCIqdH/k1ZVcT194jp4hs/NW0BQXTb2VrYbGEXzphIYVmMaUfevFnlf63:SNqaLV8a6hs/4g95S7Xz0YVyvnlfq

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      ddc9d492bd17d9f4b2742a5414247d8c_JaffaCakes118

    • Size

      49KB

    • MD5

      ddc9d492bd17d9f4b2742a5414247d8c

    • SHA1

      e327d7d697936e0545420be9a28f8dfe63b25828

    • SHA256

      7688c875c922bab06805e6844f4b9ff868c3f010a4626d80ec452f5d4940a817

    • SHA512

      d5ce4ffad27f7040388e8429929910b817fc76753183bf504c2c505b43f0c8907832f1af227c04c0ca8abf79aaf91696ab00fe94be377c34a114e8ca8758a378

    • SSDEEP

      768:SCIqdH/k1ZVcT194jp4hs/NW0BQXTb2VrYbGEXzphIYVmMaUfevFnlf63:SNqaLV8a6hs/4g95S7Xz0YVyvnlfq

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks