Overview

overview

10

Static

static

10

JaffaCakes...7a.exe

windows7-x64

10

JaffaCakes...7a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_38e3a8c04afde15dc762311f651b7c7a

  • Size

    40KB

  • Sample

    241231-1m2hea1kdx

  • MD5

    38e3a8c04afde15dc762311f651b7c7a

  • SHA1

    ee609cd147dfec1849cad86a7087eee0fe7c93fe

  • SHA256

    947a877642dcb193bab24585c75110ed2059df16abdb47955c9a2d3af7e534b9

  • SHA512

    ebfd2ea369049ac8cc11a3834eeefecf98b7c5a0098a29bd5687f7667b23fa973d571d2b3a2781a690f174502f484b62107c519f0c3fc8e90d8b9cd5145f3f46

  • SSDEEP

    384:FZcpzCIqdG3A3WUkx38GZDJuJbf1+o44u8gHzURPFZxCD6P2e3IvYFo+obxZ9/Fx:SCIqdH/k1ZVcT194jp4RPbxvImCC43p

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_38e3a8c04afde15dc762311f651b7c7a

    • Size

      40KB

    • MD5

      38e3a8c04afde15dc762311f651b7c7a

    • SHA1

      ee609cd147dfec1849cad86a7087eee0fe7c93fe

    • SHA256

      947a877642dcb193bab24585c75110ed2059df16abdb47955c9a2d3af7e534b9

    • SHA512

      ebfd2ea369049ac8cc11a3834eeefecf98b7c5a0098a29bd5687f7667b23fa973d571d2b3a2781a690f174502f484b62107c519f0c3fc8e90d8b9cd5145f3f46

    • SSDEEP

      384:FZcpzCIqdG3A3WUkx38GZDJuJbf1+o44u8gHzURPFZxCD6P2e3IvYFo+obxZ9/Fx:SCIqdH/k1ZVcT194jp4RPbxvImCC43p

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks