wannacry | dffe59edba01f48eeb62145a74384b3eda61de4aff4d4536235e40976d4eb359 | Triage

Submit
Reports

Overview

overview

Static

static

dffe59edba...59.dll

windows7_x64

dffe59edba...59.dll

windows10-2004_x64

Sharing

General

Target

dffe59edba01f48eeb62145a74384b3eda61de4aff4d4536235e40976d4eb359
Size

5.0MB
Sample

220624-2bp6nshhd2
MD5

9572e7085f1cc985e86ee018899e81e5
SHA1

bba275ac45b152fd7be85d28f4114d59ef1bf6ea
SHA256

dffe59edba01f48eeb62145a74384b3eda61de4aff4d4536235e40976d4eb359
SHA512

6729357bcb91922ff800701490a8a56374306d44e0cf7ae6fcad0ef9c6a5bf8747927ad5f7ce899846d575b175185c32d9a37712b13678ec2a80c4c50223e810

Score

10^/10

wannacry discovery ransomware worm

Static task

static1

Behavioral task

behavioral1

Sample

dffe59edba01f48eeb62145a74384b3eda61de4aff4d4536235e40976d4eb359.dll

Resource

win7-20220414-en

wannacry discovery ransomware worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

dffe59edba01f48eeb62145a74384b3eda61de4aff4d4536235e40976d4eb359.dll

Resource

win10v2004-20220414-en

wannacry discovery ransomware worm

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  dffe59edba01f48eeb62145a74384b3eda61de4aff4d4536235e40976d4eb359
- Size
  
  5.0MB
- MD5
  
  9572e7085f1cc985e86ee018899e81e5
- SHA1
  
  bba275ac45b152fd7be85d28f4114d59ef1bf6ea
- SHA256
  
  dffe59edba01f48eeb62145a74384b3eda61de4aff4d4536235e40976d4eb359
- SHA512
  
  6729357bcb91922ff800701490a8a56374306d44e0cf7ae6fcad0ef9c6a5bf8747927ad5f7ce899846d575b175185c32d9a37712b13678ec2a80c4c50223e810
Score

10^/10

wannacry discovery ransomware worm
- Wannacry
  WannaCry is a ransomware cryptoworm.
  ransomware worm wannacry
- Contacts a large (1203) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Contacts a large (1213) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

wannacrydiscoveryransomwareworm

behavioral2

wannacrydiscoveryransomwareworm

© 2018-2024

Terms | Privacy