wannacry | 4196a9d55800bb361a18d3a5c72ffc3b12054c956c03dfff7f5ad34205459958 | Triage

Submit
Reports

Overview

overview

Static

static

4196a9d558...58.dll

windows7_x64

4196a9d558...58.dll

windows10-2004_x64

Sharing

General

Target

4196a9d55800bb361a18d3a5c72ffc3b12054c956c03dfff7f5ad34205459958
Size

5.0MB
Sample

220625-b6b97ahdcl
MD5

11416ba28eb8e03657d4d228e1ed8afc
SHA1

daa51750ff5aa847f06cf16f74d348d921fada62
SHA256

4196a9d55800bb361a18d3a5c72ffc3b12054c956c03dfff7f5ad34205459958
SHA512

4686f56b028218593ca85ea2ea10eeef05f82817a8ba8541f58466e55fc62428fe4ad5b154f048d86960e65e1ce59c59a0d129388ef213fda1713cca6a48d20b

Score

10^/10

wannacry discovery ransomware worm

Static task

static1

Behavioral task

behavioral1

Sample

4196a9d55800bb361a18d3a5c72ffc3b12054c956c03dfff7f5ad34205459958.dll

Resource

win7-20220414-en

wannacry discovery ransomware worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

4196a9d55800bb361a18d3a5c72ffc3b12054c956c03dfff7f5ad34205459958.dll

Resource

win10v2004-20220414-en

wannacry discovery ransomware worm

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  4196a9d55800bb361a18d3a5c72ffc3b12054c956c03dfff7f5ad34205459958
- Size
  
  5.0MB
- MD5
  
  11416ba28eb8e03657d4d228e1ed8afc
- SHA1
  
  daa51750ff5aa847f06cf16f74d348d921fada62
- SHA256
  
  4196a9d55800bb361a18d3a5c72ffc3b12054c956c03dfff7f5ad34205459958
- SHA512
  
  4686f56b028218593ca85ea2ea10eeef05f82817a8ba8541f58466e55fc62428fe4ad5b154f048d86960e65e1ce59c59a0d129388ef213fda1713cca6a48d20b
Score

10^/10

wannacry discovery ransomware worm
- Wannacry
  WannaCry is a ransomware cryptoworm.
  ransomware worm wannacry
- Contacts a large (2618) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Contacts a large (959) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

wannacrydiscoveryransomwareworm

behavioral2

wannacrydiscoveryransomwareworm

© 2018-2024

Terms | Privacy