Overview

overview

10

Static

static

5

6204d68448...c3.exe

windows7-x64

10

6204d68448...c3.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6204d68448e1e8f59d712ca33525f20cf03c60f32546c5dbb91e0ad9081e09c3.exe

  • Size

    29KB

  • Sample

    250101-yffw1s1jbv

  • MD5

    03e862fafc0a860dc3329f89bf5a15ce

  • SHA1

    d24e9ed9916517e847b6ba0b1b12a1a6d57fcea2

  • SHA256

    6204d68448e1e8f59d712ca33525f20cf03c60f32546c5dbb91e0ad9081e09c3

  • SHA512

    4a293583d1c68df05ed3473e01e4c48cbcb7bd63fa8ce296a7f46b6c9cfe419eab38a3d240a332220b6cf08aebe0579835334ff796baa303b4aa936f5278daa0

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/Whf:AEwVs+0jNDY1qi/qOt

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      6204d68448e1e8f59d712ca33525f20cf03c60f32546c5dbb91e0ad9081e09c3.exe

    • Size

      29KB

    • MD5

      03e862fafc0a860dc3329f89bf5a15ce

    • SHA1

      d24e9ed9916517e847b6ba0b1b12a1a6d57fcea2

    • SHA256

      6204d68448e1e8f59d712ca33525f20cf03c60f32546c5dbb91e0ad9081e09c3

    • SHA512

      4a293583d1c68df05ed3473e01e4c48cbcb7bd63fa8ce296a7f46b6c9cfe419eab38a3d240a332220b6cf08aebe0579835334ff796baa303b4aa936f5278daa0

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/Whf:AEwVs+0jNDY1qi/qOt

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks