mydoom | ef9b47e23a28bd5603fad5078a82313a4f21c10e9940a79691fb1cebf28fd92a | Triage

Submit
Reports

Overview

overview

Static

static

5

ef9b47e23a...2a.exe

windows7-x64

ef9b47e23a...2a.exe

windows10-2004-x64

Sharing

General

Target

ef9b47e23a28bd5603fad5078a82313a4f21c10e9940a79691fb1cebf28fd92a.exe
Size

29KB
Sample

250102-nw95patkcj
MD5

cfa3440519ce71dff68e98325b1848c2
SHA1

a76e711e4da0026b87dd97b83e5032b6608662d8
SHA256

ef9b47e23a28bd5603fad5078a82313a4f21c10e9940a79691fb1cebf28fd92a
SHA512

323fc15840ad56fa62873cbe17d2ffa96a4759f0016b0b489f61cfca549b8e047a618d4b9c4ec035dcf04f974a04bda3d9a0976af31323cbeb86f7e2704bf583
SSDEEP

768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/X:AEwVs+0jNDY1qi/qv

Score

10^/10

mydoom discovery persistence upx worm

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

ef9b47e23a28bd5603fad5078a82313a4f21c10e9940a79691fb1cebf28fd92a.exe

Resource

win7-20240903-en

mydoom discovery persistence upx worm

windows7-x64

9 signatures

120 seconds

Behavioral task

behavioral2

Sample

ef9b47e23a28bd5603fad5078a82313a4f21c10e9940a79691fb1cebf28fd92a.exe

Resource

win10v2004-20241007-en

mydoom discovery persistence upx worm

windows10-2004-x64

9 signatures

120 seconds

Malware Config

Targets

- Target
  
  ef9b47e23a28bd5603fad5078a82313a4f21c10e9940a79691fb1cebf28fd92a.exe
- Size
  
  29KB
- MD5
  
  cfa3440519ce71dff68e98325b1848c2
- SHA1
  
  a76e711e4da0026b87dd97b83e5032b6608662d8
- SHA256
  
  ef9b47e23a28bd5603fad5078a82313a4f21c10e9940a79691fb1cebf28fd92a
- SHA512
  
  323fc15840ad56fa62873cbe17d2ffa96a4759f0016b0b489f61cfca549b8e047a618d4b9c4ec035dcf04f974a04bda3d9a0976af31323cbeb86f7e2704bf583
- SSDEEP
  
  768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/X:AEwVs+0jNDY1qi/qv
Score

10^/10

mydoom discovery persistence upx worm
- Detects MyDoom family
- MyDoom
  MyDoom is a Worm that is written in C++.
  worm mydoom
- Mydoom family
  mydoom
- Executes dropped EXE
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mydoomdiscoverypersistenceupxworm

behavioral2

mydoomdiscoverypersistenceupxworm

© 2018-2025

Terms | Privacy