Overview

overview

10

Static

static

10

JaffaCakes...1a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_b1b0fb43b74ea0aed429a711dc16891a

  • Size

    28KB

  • Sample

    250412-khaacs1sbv

  • MD5

    b1b0fb43b74ea0aed429a711dc16891a

  • SHA1

    192d562c2febb5a01567ef067597ba5f5837b4b5

  • SHA256

    1240fc640d7c34349b082479432959ece9ecdea237ae0913c35f83ce4783e433

  • SHA512

    030af529c989ea7c88ec2a465f19fc33126aed573a32ab53bc9f19d83715dc7bbba80a86e9fae1ca571ea5bb56d45b03a3f823d29d8a8b6e22c98289ce6147ea

  • SSDEEP

    384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNelG:Dv8IRRdsxq1DjJcqfZG

Score
10/10
mydoomdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_b1b0fb43b74ea0aed429a711dc16891a

    • Size

      28KB

    • MD5

      b1b0fb43b74ea0aed429a711dc16891a

    • SHA1

      192d562c2febb5a01567ef067597ba5f5837b4b5

    • SHA256

      1240fc640d7c34349b082479432959ece9ecdea237ae0913c35f83ce4783e433

    • SHA512

      030af529c989ea7c88ec2a465f19fc33126aed573a32ab53bc9f19d83715dc7bbba80a86e9fae1ca571ea5bb56d45b03a3f823d29d8a8b6e22c98289ce6147ea

    • SSDEEP

      384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNelG:Dv8IRRdsxq1DjJcqfZG

    Score
    10/10
    mydoomdiscoverypersistenceupxworm

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

      wormmydoom

    • Mydoom family

      mydoom

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

MITRE ATT&CK Enterprise v16

Tasks