Overview

overview

10

Static

static

10

[email protected]

windows7-x64

10

[email protected]

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_7784fcf4682065d63f492bf0e2538080

  • Size

    28KB

  • Sample

    250104-em5n6ssqhn

  • MD5

    7784fcf4682065d63f492bf0e2538080

  • SHA1

    35df08cea69281c2f55b5318638131650d2d26a0

  • SHA256

    3adfa326e9362efc59d635867cedc3fd55422aff663ea49891a109b106a64771

  • SHA512

    06b891261c7d658d30f507d50a2b808c6edcc84ffa28a6fc89e65eef9396fc6f982571fb8ede3bf4d0582bd72d32a188fc4731eaa8f9ae688d9faca82ba7e861

  • SSDEEP

    384:HvxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNfqlc1p:Zv8IRRdsxq1DjJcqfoqlMp

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      [email protected]

    • Size

      28KB

    • MD5

      73ae74bcaae686577248f71b420f526e

    • SHA1

      3bf6dee338fc55e656b71618d300387b57b3cc35

    • SHA256

      bf4831f5071b38991eacd774c39a26473952b02775e0a227e7875c2cb8a24ce5

    • SHA512

      af8d0b88f67786795a1b83fcb7c3415b85444721fcd820ff729adef538270ce996d2d92585449392310216664c91694c4f0c4a00c742aac4c40dbb2214a15e71

    • SSDEEP

      384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNfqlc1d:Dv8IRRdsxq1DjJcqfoqlMd

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks