Overview

overview

10

Static

static

10

JaffaCakes...06.exe

windows7-x64

10

JaffaCakes...06.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_61897599316f47a60aa59f63123ae206

  • Size

    28KB

  • Sample

    250102-apylesvlhm

  • MD5

    61897599316f47a60aa59f63123ae206

  • SHA1

    3234a3839af2618d4c6a8b6b73870be1b745833b

  • SHA256

    0014929536a6db3c2eb9e432cf009c7cb512b3de90de5757260b5027be510e52

  • SHA512

    6ec9b8eb68464b51f6a1d6717cb81a77820b56b49cf5ca0a032c6e671248916fbd40925bcba522b7d9cab52b811b58c119c4dae397c585f115b5fe8a7b937686

  • SSDEEP

    384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNvBx7P:Dv8IRRdsxq1DjJcqfwBx7P

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_61897599316f47a60aa59f63123ae206

    • Size

      28KB

    • MD5

      61897599316f47a60aa59f63123ae206

    • SHA1

      3234a3839af2618d4c6a8b6b73870be1b745833b

    • SHA256

      0014929536a6db3c2eb9e432cf009c7cb512b3de90de5757260b5027be510e52

    • SHA512

      6ec9b8eb68464b51f6a1d6717cb81a77820b56b49cf5ca0a032c6e671248916fbd40925bcba522b7d9cab52b811b58c119c4dae397c585f115b5fe8a7b937686

    • SSDEEP

      384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNvBx7P:Dv8IRRdsxq1DjJcqfwBx7P

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks