General

  • Target

    22606ce9ea8247dc647a9cd236bf54fa

  • Size

    5.0MB

  • Sample

    220720-ja8yaadbb6

  • MD5

    22606ce9ea8247dc647a9cd236bf54fa

  • SHA1

    55d270de555aa2a10abb06a33f6dfe39ab904ed7

  • SHA256

    c0f31771fbc18ba5e68ff7cd29cdf82bc2806a5b6652019ba820ab6146474bee

  • SHA512

    95e9d65797abcef45fbef2078f5ebbd10fb76ac765ca74b725ad01dd17938e55bbdf7f646f0e6776080e33089ff34c0448b10cbdd57614a0677ff2ec1caf1242

Malware Config

Targets

    • Target

      22606ce9ea8247dc647a9cd236bf54fa

    • Size

      5.0MB

    • MD5

      22606ce9ea8247dc647a9cd236bf54fa

    • SHA1

      55d270de555aa2a10abb06a33f6dfe39ab904ed7

    • SHA256

      c0f31771fbc18ba5e68ff7cd29cdf82bc2806a5b6652019ba820ab6146474bee

    • SHA512

      95e9d65797abcef45fbef2078f5ebbd10fb76ac765ca74b725ad01dd17938e55bbdf7f646f0e6776080e33089ff34c0448b10cbdd57614a0677ff2ec1caf1242

    • Wannacry

      WannaCry is a ransomware cryptoworm.

    • Contacts a large (3220) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Contacts a large (981) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Executes dropped EXE

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks