wannacry | 88489f32a5e8521eb18fc390aac403c729fccb579e5b23307ca487ec7c724ce1 | Triage

Submit
Reports

Overview

overview

Static

static

00bc02b91a...4f.dll

windows7_x64

00bc02b91a...4f.dll

windows10_x64

Sharing

General

Target

00bc02b91a3850390e977e4b75f1f84f
Size

5.0MB
Sample

210119-t5bwdvfgps
MD5

00bc02b91a3850390e977e4b75f1f84f
SHA1

73240c616134f1830a0ab8dd565284d92e238333
SHA256

88489f32a5e8521eb18fc390aac403c729fccb579e5b23307ca487ec7c724ce1
SHA512

7baaf5578589f6881334868c1c7a4739a7e2294cef4967f10db20d9280dff2379b0977c6bec9d7c57b50df0e064a71d9df7be39ce48605a5c32b868e927667a5

Score

10^/10

wannacry ransomware worm

Static task

static1

Behavioral task

behavioral1

Sample

00bc02b91a3850390e977e4b75f1f84f.dll

Resource

win7v20201028

wannacry ransomware worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

00bc02b91a3850390e977e4b75f1f84f.dll

Resource

win10v20201028

wannacry ransomware worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  00bc02b91a3850390e977e4b75f1f84f
- Size
  
  5.0MB
- MD5
  
  00bc02b91a3850390e977e4b75f1f84f
- SHA1
  
  73240c616134f1830a0ab8dd565284d92e238333
- SHA256
  
  88489f32a5e8521eb18fc390aac403c729fccb579e5b23307ca487ec7c724ce1
- SHA512
  
  7baaf5578589f6881334868c1c7a4739a7e2294cef4967f10db20d9280dff2379b0977c6bec9d7c57b50df0e064a71d9df7be39ce48605a5c32b868e927667a5
Score

10^/10

wannacry ransomware worm
- Wannacry
  WannaCry is a ransomware cryptoworm.
  ransomware worm wannacry
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

wannacryransomwareworm

behavioral2

wannacryransomwareworm

© 2018-2024

Terms | Privacy