Overview

overview

10

Static

static

10

JaffaCakes...37.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_b0b4c537ae07852a29f628197c2a5a37

  • Size

    28KB

  • Sample

    250412-b7cx4svmy2

  • MD5

    b0b4c537ae07852a29f628197c2a5a37

  • SHA1

    84f6ea539cb109b23db9ba6e0d8a3e1a4d78254d

  • SHA256

    e13e5be12cf64cf74cc9c180130104719339bd841610c871c066e627a13a47ef

  • SHA512

    45e22f326e24cf24b9b8b6b6b6743603a1bed6dea3c1ea0f1839eafb8612d3578033bd53a28fb06ebbe1ee0575f26e9cb33993019fe1ab4eb45f8b0cbac9a74d

  • SSDEEP

    384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNzTSZ0:Dv8IRRdsxq1DjJcqfJO

Score
10/10
mydoommicrosoftdiscoverypersistencephishingproduct:outlookupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_b0b4c537ae07852a29f628197c2a5a37

    • Size

      28KB

    • MD5

      b0b4c537ae07852a29f628197c2a5a37

    • SHA1

      84f6ea539cb109b23db9ba6e0d8a3e1a4d78254d

    • SHA256

      e13e5be12cf64cf74cc9c180130104719339bd841610c871c066e627a13a47ef

    • SHA512

      45e22f326e24cf24b9b8b6b6b6743603a1bed6dea3c1ea0f1839eafb8612d3578033bd53a28fb06ebbe1ee0575f26e9cb33993019fe1ab4eb45f8b0cbac9a74d

    • SSDEEP

      384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNzTSZ0:Dv8IRRdsxq1DjJcqfJO

    Score
    10/10
    mydoommicrosoftdiscoverypersistencephishingproduct:outlookupxworm

    • Detected microsoft outlook phishing page

      phishingmicrosoftproduct:outlook

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

MITRE ATT&CK Enterprise v16

Tasks