Overview

overview

10

Static

static

10

f-mydoom.exe

windows11-21h2-x64

7

strip-girl...es.exe

windows11-21h2-x64

10

Resubmissions

14-12-2024 11:50

241214-nzz4ws1kds 10

14-12-2024 11:47

241214-nxz14s1jgx 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    W32.MyDoom.A.zip

  • Size

    293KB

  • Sample

    241214-nzz4ws1kds

  • MD5

    ee70b23f67565ce4822f0f5f8d24525e

  • SHA1

    b7d18219951580dbd9f35d7c547ab65853dcbc76

  • SHA256

    8f78806e212e18346b63aebddef9d4ffdc15e12d6c6485b73353989f382acb88

  • SHA512

    5e616915ba3135b75f12bd3c20fa2c4084903fa955f4ea172e5059d4e717ed5a2184e3d1efacc019f2f9bc4d74848a8b3da888c3d3f01179260d12813becdaa9

  • SSDEEP

    6144:wbcyHrF3W6aYQ5UEL2DJ7ikAjteG/QBfJv6hYRFz6FaqXCwLqbCJ:wbcqBW6aYcKN7ikAjteEKBCyRFz4LSwd

Score
10/10
mydoomdiscoveryspywarestealerupxworm

Malware Config

Targets

    • Target

      f-mydoom.exe

    • Size

      111KB

    • MD5

      91800f7d2ca85deedba2735c8b4505ce

    • SHA1

      92fe08cb0213e0e07fdd0382da0178834ef5e401

    • SHA256

      e98dccc92e1733f8736678d82b3d1a8c6388b8cb1e42a5083d113cf75fb0577d

    • SHA512

      89359ccbe64ee1fec2ac7446b3022cd38e2316507b1a938fbf5a3171c8b43333dd6b04b1faa597dbe6e20fd243056798336805405bedfb761e9d4ee649109a40

    • SSDEEP

      3072:eL//liK0SY+3CPzEWrfxCuXhcxM7uu2hFgzp:G//liK0SY+3CP2uXKar2h2

    Score
    7/10
    discoveryspywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1

    • Target

      strip-girl-2.0bdcom_patches.exe

    • Size

      22KB

    • MD5

      53df39092394741514bc050f3d6a06a9

    • SHA1

      f91a4d7ac276b8e8b7ae41c22587c89a39ddcea5

    • SHA256

      fff0ccf5feaf5d46b295f770ad398b6d572909b00e2b8bcd1b1c286c70cd9151

    • SHA512

      9792017109cf6ffc783e67be2a4361aa2c0792a359718434fec53e83feed6a9a2f0f331e9951f798e7fb89421fdc1ac0e083527c3d3b6dd71b7fdd90836023a0

    • SSDEEP

      384:96ZQHXcE7hUHwT56cC9Kg65JdwGADkHw/Rjxtuu7VIGGwQWEqpD6:CavuHAUcW/ojwG6kHw/lxqbW

    Score
    10/10
    mydoomdiscoveryupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral2

MITRE ATT&CK Enterprise v15

Tasks