Overview

overview

10

Static

static

5

ec1ba1e029...57.exe

windows7-x64

10

ec1ba1e029...57.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ec1ba1e0296b7b92bae7d9a9a99529e5f3d454a9f4897f851c224518c6821c57

  • Size

    29KB

  • Sample

    241220-ks6rbatqdz

  • MD5

    9284d891a1f92a2eed3c59b096e41b56

  • SHA1

    27da5cba3832cb16b0630c35ca1d0a166247fdd0

  • SHA256

    ec1ba1e0296b7b92bae7d9a9a99529e5f3d454a9f4897f851c224518c6821c57

  • SHA512

    15ad81b20a43ce9ebe5f055cdaf99611e60975b18bcc683b3d534ded0b7f410b32df6f37e8267d8ebf3e519a9f56610b12e9a88b2180a0313e8d62c5733ed41e

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/Ihp:AEwVs+0jNDY1qi/qAT

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      ec1ba1e0296b7b92bae7d9a9a99529e5f3d454a9f4897f851c224518c6821c57

    • Size

      29KB

    • MD5

      9284d891a1f92a2eed3c59b096e41b56

    • SHA1

      27da5cba3832cb16b0630c35ca1d0a166247fdd0

    • SHA256

      ec1ba1e0296b7b92bae7d9a9a99529e5f3d454a9f4897f851c224518c6821c57

    • SHA512

      15ad81b20a43ce9ebe5f055cdaf99611e60975b18bcc683b3d534ded0b7f410b32df6f37e8267d8ebf3e519a9f56610b12e9a88b2180a0313e8d62c5733ed41e

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/Ihp:AEwVs+0jNDY1qi/qAT

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks