General
-
Target
37c9312a75ef93ab05d3d8ed59d4906e876dc57bccac52b065f4f297df28b21b
-
Size
23KB
-
Sample
250328-v11v5s1kz8
-
MD5
5fbbb1aedabb81dc6c360985266ca192
-
SHA1
48c86665be1d8389e245cda2afa986d8253157d5
-
SHA256
37c9312a75ef93ab05d3d8ed59d4906e876dc57bccac52b065f4f297df28b21b
-
SHA512
e4b882c0b1f76fc8b732900f88141f1ae841f44a4092f5fe0678afab782f0851da18e5fd93c9c59c03934a3651723852d18ccb90540cc01e0a10cc5cb46c34d5
-
SSDEEP
384:FZcpzCIqdG3A3WUkx38GZDJuJbf1+o44u8gHzUp7A5KkN:SCIqdH/k1ZVcT194jp4pkZN
Malware Config
Targets
-
-
Target
37c9312a75ef93ab05d3d8ed59d4906e876dc57bccac52b065f4f297df28b21b
-
Size
23KB
-
MD5
5fbbb1aedabb81dc6c360985266ca192
-
SHA1
48c86665be1d8389e245cda2afa986d8253157d5
-
SHA256
37c9312a75ef93ab05d3d8ed59d4906e876dc57bccac52b065f4f297df28b21b
-
SHA512
e4b882c0b1f76fc8b732900f88141f1ae841f44a4092f5fe0678afab782f0851da18e5fd93c9c59c03934a3651723852d18ccb90540cc01e0a10cc5cb46c34d5
-
SSDEEP
384:FZcpzCIqdG3A3WUkx38GZDJuJbf1+o44u8gHzUp7A5KkN:SCIqdH/k1ZVcT194jp4pkZN
Score10/10-
Detects MyDoom family
-
MyDoom
MyDoom is a Worm that is written in C++.
-
Mydoom family
-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Privilege Escalation
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1