Overview

overview

10

Static

static

5

d93f67ae39...cf.exe

windows7-x64

10

d93f67ae39...cf.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d93f67ae390c5bc332968034f20375c45b094b22476e51071011287c09f3b4cf.exe

  • Size

    29KB

  • Sample

    241226-y1h7waxret

  • MD5

    c3c29c9459395d6a38e5312058bb04a1

  • SHA1

    874f7b402e0e2e748d444f8c704bb84a1dc94418

  • SHA256

    d93f67ae390c5bc332968034f20375c45b094b22476e51071011287c09f3b4cf

  • SHA512

    bd37fca121e4745f5a2b4ba2d20ccda07d0d09e69aa989821b4486a9751e391cd620fb98487f1438e6d9cc029b5c89b4f5c9472957b66a3feacc7e2dc1f54387

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/Ghx:AEwVs+0jNDY1qi/q+L

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      d93f67ae390c5bc332968034f20375c45b094b22476e51071011287c09f3b4cf.exe

    • Size

      29KB

    • MD5

      c3c29c9459395d6a38e5312058bb04a1

    • SHA1

      874f7b402e0e2e748d444f8c704bb84a1dc94418

    • SHA256

      d93f67ae390c5bc332968034f20375c45b094b22476e51071011287c09f3b4cf

    • SHA512

      bd37fca121e4745f5a2b4ba2d20ccda07d0d09e69aa989821b4486a9751e391cd620fb98487f1438e6d9cc029b5c89b4f5c9472957b66a3feacc7e2dc1f54387

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/Ghx:AEwVs+0jNDY1qi/q+L

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks