Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

pidujaglbstbz.exe

windows7-x64

10

pidujaglbstbz.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    00007ca770b202225765b768548f7734e987dc133bdf6b282a597146f9d6239e

  • Size

    66KB

  • Sample

    250319-ft3c3aswet

  • MD5

    c1aba76af015f9c55a77e3861b742e3d

  • SHA1

    b2993e067e3d0e69b379720c5a02995cf71b6845

  • SHA256

    00007ca770b202225765b768548f7734e987dc133bdf6b282a597146f9d6239e

  • SHA512

    0b777854a3c10187bfcc5612ba77df1c51f4d3281ec3c4acce5fe542a217f79d19c2585039cd4b00f15de22c1c6a2f217cda6c0b9ab9ac6bfa16c77a3a3a3999

  • SSDEEP

    1536:9le8SMuDd+fK3F6Xs6Xj/rPl+oIvYTjipvFsp:9leRrATPUPvYvQdsp

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      pidujaglbstbz.exe

    • Size

      65KB

    • MD5

      22b8951d084b1c03c65296963c279e93

    • SHA1

      9a98bfe0bbcc1c6bd7cfb3bbb0d700f8f331f13f

    • SHA256

      c223e1c1c0e0353806b01be751ce807243fee1d69cd2c2eb15cfbe4733b46cf9

    • SHA512

      9b2badc3a7686374ea6c515c00e3b9a6f13b3404cc4ef04bd87ded8507da5350ba11ed036d2d97bb085c1bc3bb2f26630a3765451f14b2591c799db3e336bc68

    • SSDEEP

      1536:ae8SMuDd+fK3F6Xs6Xj/rPl+oIvYTjipvFK:aeRrATPUPvYvQdK

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks