Overview

overview

10

Static

static

5

5cf2538415...47.exe

windows7-x64

10

5cf2538415...47.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5cf253841530161ddf84d8253525afcf9c408b5ee1e8bc9e0d8ccfe13cdc9a47.exe

  • Size

    29KB

  • Sample

    241222-ahgpbsvqhl

  • MD5

    5337f75f080245ed83e773e1f244c79a

  • SHA1

    196a5a5c82c0f0c3bd4835620e83321265ab9ce5

  • SHA256

    5cf253841530161ddf84d8253525afcf9c408b5ee1e8bc9e0d8ccfe13cdc9a47

  • SHA512

    3f85977642f04e4a0a73f3159f9ffa04d15d1fe322af07878c72cb9ae764239fca25a1e2aacb970ffcb8b61bf20c47827623e12e20b04a8f3b50252e70c9e3ee

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/Yhz:AEwVs+0jNDY1qi/qwB

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      5cf253841530161ddf84d8253525afcf9c408b5ee1e8bc9e0d8ccfe13cdc9a47.exe

    • Size

      29KB

    • MD5

      5337f75f080245ed83e773e1f244c79a

    • SHA1

      196a5a5c82c0f0c3bd4835620e83321265ab9ce5

    • SHA256

      5cf253841530161ddf84d8253525afcf9c408b5ee1e8bc9e0d8ccfe13cdc9a47

    • SHA512

      3f85977642f04e4a0a73f3159f9ffa04d15d1fe322af07878c72cb9ae764239fca25a1e2aacb970ffcb8b61bf20c47827623e12e20b04a8f3b50252e70c9e3ee

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/Yhz:AEwVs+0jNDY1qi/qwB

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.