mydoom | cf2f73ea12837040efa84390b4411f584daf3320b96be6d772ee7c48ed57077e | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...74.exe

windows7-x64

JaffaCakes...74.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_95326fe65fbbe50683370601b15cfd74
Size

28KB
Sample

250329-ybztbsttdw
MD5

95326fe65fbbe50683370601b15cfd74
SHA1

f09a479d1d3143be076788364176b20025cbf78c
SHA256

cf2f73ea12837040efa84390b4411f584daf3320b96be6d772ee7c48ed57077e
SHA512

15040f2d26aa1c6701a1a13d58c2849fcf9f12ce03b682bd989f71cec37f83597ac1869745dd6bdc4b94a5ba4afa92e288c409c184889164dd6b02efa166b54c
SSDEEP

384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNH6:Dv8IRRdsxq1DjJcqfO6

Score

10^/10

mydoom microsoft discovery persistence phishing product:outlook upx worm

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_95326fe65fbbe50683370601b15cfd74.exe

Resource

win7-20240903-en

mydoom upx worm

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_95326fe65fbbe50683370601b15cfd74.exe

Resource

win10v2004-20250314-en

mydoom microsoft discovery persistence phishing product:outlook upx worm

windows10-2004-x64

16 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_95326fe65fbbe50683370601b15cfd74
- Size
  
  28KB
- MD5
  
  95326fe65fbbe50683370601b15cfd74
- SHA1
  
  f09a479d1d3143be076788364176b20025cbf78c
- SHA256
  
  cf2f73ea12837040efa84390b4411f584daf3320b96be6d772ee7c48ed57077e
- SHA512
  
  15040f2d26aa1c6701a1a13d58c2849fcf9f12ce03b682bd989f71cec37f83597ac1869745dd6bdc4b94a5ba4afa92e288c409c184889164dd6b02efa166b54c
- SSDEEP
  
  384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNH6:Dv8IRRdsxq1DjJcqfO6
Score

10^/10

mydoom upx worm microsoft discovery persistence phishing product:outlook
- Detected microsoft outlook phishing page
  phishing microsoft product:outlook
- Detects MyDoom family
- MyDoom
  MyDoom is a Worm that is written in C++.
  worm mydoom
- Mydoom family
  mydoom
- Executes dropped EXE
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

mydoommicrosoftdiscoverypersistencephishingproduct:outlookupxworm

© 2018-2025

Terms | Privacy