Overview

overview

10

Static

static

042889c7d1...le.dll

windows7_x64

10

042889c7d1...le.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    042889c7d19b1c7aec30d171c1e147953907146ff5eb81e3bfc29ca83e962658.sample

  • Size

    5.0MB

  • Sample

    210726-3kvfhtvp66

  • MD5

    3b9fa46d89fd099e914d6275cac9171f

  • SHA1

    6236eff5dc07a222bbf60f4e62225f2052b1f55a

  • SHA256

    042889c7d19b1c7aec30d171c1e147953907146ff5eb81e3bfc29ca83e962658

  • SHA512

    d6548746bd45b2e0151c7f7fd2ea0d1ce983f5e659366777def2d8f10f10322733af168d086a5b3d126e7e108263a5b954652f526d93982e4f9719b3411abd27

Score
10/10
wannacryransomwaresuricataworm

Malware Config

Targets

    • Target

      042889c7d19b1c7aec30d171c1e147953907146ff5eb81e3bfc29ca83e962658.sample

    • Size

      5.0MB

    • MD5

      3b9fa46d89fd099e914d6275cac9171f

    • SHA1

      6236eff5dc07a222bbf60f4e62225f2052b1f55a

    • SHA256

      042889c7d19b1c7aec30d171c1e147953907146ff5eb81e3bfc29ca83e962658

    • SHA512

      d6548746bd45b2e0151c7f7fd2ea0d1ce983f5e659366777def2d8f10f10322733af168d086a5b3d126e7e108263a5b954652f526d93982e4f9719b3411abd27

    Score
    10/10
    wannacryransomwaresuricataworm

    • Wannacry

      WannaCry is a ransomware cryptoworm.

      ransomwarewormwannacry

    • suricata: ET MALWARE Known Sinkhole Response Kryptos Logic

      suricata

    • suricata: ET MALWARE W32/WannaCry.Ransomware Killswitch Domain HTTP Request 1

      suricata

    • Executes dropped EXE

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks