Overview

overview

10

Static

static

10

JaffaCakes...91.exe

windows7-x64

10

JaffaCakes...91.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_6046d4020eabc2579bd0e0c183759591

  • Size

    28KB

  • Sample

    250101-ybpy5azqat

  • MD5

    6046d4020eabc2579bd0e0c183759591

  • SHA1

    fc37aa1f941e618e3397dd5309274c3225100fc2

  • SHA256

    5ebec308ce5f0302313bd1ec4069cfe5d29b15c2d15243d0ab0eab5fdf797d85

  • SHA512

    5ef5a194dc297aee5619d160b07083f2873085afdcc8eb25e9c757cdc18dbc9fe5f67930471c91e463a975c1b6e14291a7e5fc6fa4bc1350ae2378a298995fa0

  • SSDEEP

    384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNFIR9W:Dv8IRRdsxq1DjJcqfrRg

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_6046d4020eabc2579bd0e0c183759591

    • Size

      28KB

    • MD5

      6046d4020eabc2579bd0e0c183759591

    • SHA1

      fc37aa1f941e618e3397dd5309274c3225100fc2

    • SHA256

      5ebec308ce5f0302313bd1ec4069cfe5d29b15c2d15243d0ab0eab5fdf797d85

    • SHA512

      5ef5a194dc297aee5619d160b07083f2873085afdcc8eb25e9c757cdc18dbc9fe5f67930471c91e463a975c1b6e14291a7e5fc6fa4bc1350ae2378a298995fa0

    • SSDEEP

      384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNFIR9W:Dv8IRRdsxq1DjJcqfrRg

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks