Overview

overview

10

Static

static

10

JaffaCakes...a3.exe

windows7-x64

10

JaffaCakes...a3.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_2fcf73571abaa92db9139cde4f6d33a3

  • Size

    76KB

  • Sample

    250106-vnneaatqgr

  • MD5

    2fcf73571abaa92db9139cde4f6d33a3

  • SHA1

    f747d86914103e9cb9e1bd51e9979da891ae7685

  • SHA256

    7337e72bae2be5b6ea7e37a58ef48241e35e091a8ce22320c259c7829f0a6c20

  • SHA512

    02008fa43cbf529c63654e7f9f2b59e330d35eff0f7bad6bece9b61df6d5ffe24df8478a4ba65cf55d9b7480387f80de81ac1f61ee478c7903f6261e1155794e

  • SSDEEP

    1536:n87wc1aGNC0klI7CPpIFa6DVgUowooX7tXHDESpLZEBGCf2HR:87wc1aOCo7CxItgUowXLtXlfCf+R

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_2fcf73571abaa92db9139cde4f6d33a3

    • Size

      76KB

    • MD5

      2fcf73571abaa92db9139cde4f6d33a3

    • SHA1

      f747d86914103e9cb9e1bd51e9979da891ae7685

    • SHA256

      7337e72bae2be5b6ea7e37a58ef48241e35e091a8ce22320c259c7829f0a6c20

    • SHA512

      02008fa43cbf529c63654e7f9f2b59e330d35eff0f7bad6bece9b61df6d5ffe24df8478a4ba65cf55d9b7480387f80de81ac1f61ee478c7903f6261e1155794e

    • SSDEEP

      1536:n87wc1aGNC0klI7CPpIFa6DVgUowooX7tXHDESpLZEBGCf2HR:87wc1aOCo7CxItgUowXLtXlfCf+R

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks