Overview

overview

10

Static

static

10

JaffaCakes...30.exe

windows7-x64

10

JaffaCakes...30.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_61246263160782b2d2895e3217633130

  • Size

    28KB

  • Sample

    250101-2wd9xa1pbk

  • MD5

    61246263160782b2d2895e3217633130

  • SHA1

    8151267a99ff01f1216b5afa5330538aae2fe1f2

  • SHA256

    92ba5c5e04f3e74c94ac8c55ad8766162c44a3c6d898dec43708e69b5e6e9d15

  • SHA512

    5dc119ad84ac3451db104f859a566c0b3ecaf0468780301c043cf1adf24ae9a300f6ceea0ab5830c566f38e726b99c2b10796bedefec239ebbfa7f9326717835

  • SSDEEP

    384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNDcpHHtR:Dv8IRRdsxq1DjJcqfgotR

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_61246263160782b2d2895e3217633130

    • Size

      28KB

    • MD5

      61246263160782b2d2895e3217633130

    • SHA1

      8151267a99ff01f1216b5afa5330538aae2fe1f2

    • SHA256

      92ba5c5e04f3e74c94ac8c55ad8766162c44a3c6d898dec43708e69b5e6e9d15

    • SHA512

      5dc119ad84ac3451db104f859a566c0b3ecaf0468780301c043cf1adf24ae9a300f6ceea0ab5830c566f38e726b99c2b10796bedefec239ebbfa7f9326717835

    • SSDEEP

      384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNDcpHHtR:Dv8IRRdsxq1DjJcqfgotR

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks