Overview

overview

10

Static

static

10

JaffaCakes...e6.exe

windows7-x64

10

JaffaCakes...e6.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_77c9cf107bc34963742311aa800d8ce6

  • Size

    40KB

  • Sample

    250104-fqhjgstkhz

  • MD5

    77c9cf107bc34963742311aa800d8ce6

  • SHA1

    6bdc4d4f9e880ab4de17601d198ca4f6ea0f0a46

  • SHA256

    51cf9a006b00e29fad60f3af4c6af6ae1be8621e5c40525b50610d72326412d1

  • SHA512

    8ad3703dab0c7e82349aa2c71c74aa69f1c3420a5b31fbc47c0274ec04b1fc34c42a096beb4baa10eaafee41e6b850a23911360aeeb4db663fdd793fff1450e5

  • SSDEEP

    768:aq9m/ZsybSg2ts4L3RLc/qjhsKmHbk1+qJ0UtHs:aqk/Zdic/qjh8w19JDHs

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_77c9cf107bc34963742311aa800d8ce6

    • Size

      40KB

    • MD5

      77c9cf107bc34963742311aa800d8ce6

    • SHA1

      6bdc4d4f9e880ab4de17601d198ca4f6ea0f0a46

    • SHA256

      51cf9a006b00e29fad60f3af4c6af6ae1be8621e5c40525b50610d72326412d1

    • SHA512

      8ad3703dab0c7e82349aa2c71c74aa69f1c3420a5b31fbc47c0274ec04b1fc34c42a096beb4baa10eaafee41e6b850a23911360aeeb4db663fdd793fff1450e5

    • SSDEEP

      768:aq9m/ZsybSg2ts4L3RLc/qjhsKmHbk1+qJ0UtHs:aqk/Zdic/qjh8w19JDHs

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks