Tool: Mydoom

Names: Mydoom, Novarg, Mimail

Description: (Palo Alto) MyDoom is an infamous computer worm first noted in early 2004. This malware has been featured in top ten lists of the most destructive computer viruses, causing an estimated $38 billion in damage. Although now well past its heyday, MyDoom continues to be a presence in the cyber threat landscape. While not as prominent as other malware families, MyDoom has remained relatively consistent during the past few years, averaging approximately 1.1 percent of all emails we see with malware attachments. We continue to record tens of thousands of MyDoom samples every month. The vast majority of MyDoom emails come from IP addresses registered in China, with the United States running a distant second. These emails are sent to recipients across the world, mostly targeting high tech, wholesale, retail, healthcare, education, and manufacturing industries.

Category: Malware

Type: Worm, DDoS

Information: https://unit42.paloaltonetworks.com/mydoom-still-active-in-2019/

Malpedia: https://malpedia.caad.fkie.fraunhofer.de/details/win.mydoom

Alienvault-otx: https://otx.alienvault.com/browse/pulses?q=tag:MyDoom

Last-card-change: 2021-04-24

Source: https://apt.etda.or.th/cgi-bin/listtools.cgi