Overview

overview

10

Static

static

10

JaffaCakes...29.exe

windows7-x64

10

JaffaCakes...29.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_23f56f724af4e42474ec3ab0ca670f29

  • Size

    32KB

  • Sample

    241231-sjfsjawlbw

  • MD5

    23f56f724af4e42474ec3ab0ca670f29

  • SHA1

    97622e7d97763f0d5e2a625c112d62f95f125af2

  • SHA256

    a04c61beed31cf1d31a77d32faf1187d3fc29779c5959b460ce6cf65f4ee4d3c

  • SHA512

    ff4b6b4b6dfb9710dc78529a3b80a984c40f76a2a9e1073389be3cf27c995eee1845f54db83f25d0cf83417d73e035fd54850eee37979bcaf6034762d85da371

  • SSDEEP

    384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNfVy/h6bbxMbgbbxMv:Dv8IRRdsxq1DjJcqfF6bbBbb/bb

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_23f56f724af4e42474ec3ab0ca670f29

    • Size

      32KB

    • MD5

      23f56f724af4e42474ec3ab0ca670f29

    • SHA1

      97622e7d97763f0d5e2a625c112d62f95f125af2

    • SHA256

      a04c61beed31cf1d31a77d32faf1187d3fc29779c5959b460ce6cf65f4ee4d3c

    • SHA512

      ff4b6b4b6dfb9710dc78529a3b80a984c40f76a2a9e1073389be3cf27c995eee1845f54db83f25d0cf83417d73e035fd54850eee37979bcaf6034762d85da371

    • SSDEEP

      384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNfVy/h6bbxMbgbbxMv:Dv8IRRdsxq1DjJcqfF6bbBbb/bb

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks