Overview

overview

10

Static

static

10

iobox.exe

windows7-x64

10

iobox.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_4b137e253a8f6d2a5d6a716b6666bcb0

  • Size

    28KB

  • Sample

    250101-hktexazphq

  • MD5

    4b137e253a8f6d2a5d6a716b6666bcb0

  • SHA1

    73ca5e2e5744247ecac05abc9b5c27ed386d91b3

  • SHA256

    232af57bf9f9eaae06b5c0016a19a19895a8d3369df3d20b3a53d1c871b2757d

  • SHA512

    16093214cc9134f893ecdc1beb7ff7f56b87f3ff8d578824871066a3be15801a4f27537a29af5281f2fd84ccf05538a494bedc2d3f21e1fa751e72faab7d3ed2

  • SSDEEP

    384:0vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNpJmp6:yv8IRRdsxq1DjJcqfkE6

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      iobox.com

    • Size

      28KB

    • MD5

      f4c12a1441daa2eaebd5513fa1e819f8

    • SHA1

      bff3bde8c92535e7b9ac663fd842e82b599cdadc

    • SHA256

      82485e15c4348b2bbfcca570a113395bf3dbe45403a28216dd38c0d0259e6f36

    • SHA512

      a881f40caf6963410f2fd65e75117903e40e3829119d7284062e14bdf495a500050eeb27eb92699aeb60b5e3f945edd987f7ab723b2e7cbedb4c804eac4ccc91

    • SSDEEP

      384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNpJmpx:Dv8IRRdsxq1DjJcqfkEx

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks