Overview

overview

10

Static

static

5

5a0be4125f...3c.exe

windows7-x64

10

5a0be4125f...3c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5a0be4125f2faf46749851fdb0cde8c559ab633c75802a0c315d53877193173c

  • Size

    29KB

  • Sample

    250118-ch2evazqar

  • MD5

    38c950066dc215c1737f8c0e6d3ce6c6

  • SHA1

    f4de214cf6634f5609290a836c97e5b65e6ee437

  • SHA256

    5a0be4125f2faf46749851fdb0cde8c559ab633c75802a0c315d53877193173c

  • SHA512

    a32a4dc1f640bd24fa81554c4c5e2aa159cacefcbab5c8dde70456110ec087c8c32fecfa1414fa39c3cb06d16bece30679c24ce6028272c5dcff615861e22f1d

  • SSDEEP

    768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/uhR:AEwVs+0jNDY1qi/qmr

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      5a0be4125f2faf46749851fdb0cde8c559ab633c75802a0c315d53877193173c

    • Size

      29KB

    • MD5

      38c950066dc215c1737f8c0e6d3ce6c6

    • SHA1

      f4de214cf6634f5609290a836c97e5b65e6ee437

    • SHA256

      5a0be4125f2faf46749851fdb0cde8c559ab633c75802a0c315d53877193173c

    • SHA512

      a32a4dc1f640bd24fa81554c4c5e2aa159cacefcbab5c8dde70456110ec087c8c32fecfa1414fa39c3cb06d16bece30679c24ce6028272c5dcff615861e22f1d

    • SSDEEP

      768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/uhR:AEwVs+0jNDY1qi/qmr

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks