Overview

overview

10

Static

static

10

JaffaCakes...5e.exe

windows7-x64

10

JaffaCakes...5e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_61d9b4607c557781945b2b178377765e

  • Size

    28KB

  • Sample

    250102-bxwbpswkgv

  • MD5

    61d9b4607c557781945b2b178377765e

  • SHA1

    80db34d72e291b398d4c31087df0b60aeb11c66d

  • SHA256

    afb39c71891ec5ee739466db3222d70cd93f36e8a282e40bc8516b5e479f9153

  • SHA512

    144d907d66d7e624e706e562255cafd9d8a1c00180ee803fb2c35ab5780e9b01ff92660176fbed5f10853ad1f366d66f7d497e6cc6986ca17203aac479c82fcf

  • SSDEEP

    384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNmp7iP:Dv8IRRdsxq1DjJcqfJp7iP

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_61d9b4607c557781945b2b178377765e

    • Size

      28KB

    • MD5

      61d9b4607c557781945b2b178377765e

    • SHA1

      80db34d72e291b398d4c31087df0b60aeb11c66d

    • SHA256

      afb39c71891ec5ee739466db3222d70cd93f36e8a282e40bc8516b5e479f9153

    • SHA512

      144d907d66d7e624e706e562255cafd9d8a1c00180ee803fb2c35ab5780e9b01ff92660176fbed5f10853ad1f366d66f7d497e6cc6986ca17203aac479c82fcf

    • SSDEEP

      384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNmp7iP:Dv8IRRdsxq1DjJcqfJp7iP

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks