Overview

overview

10

Static

static

fb26d5387f...32.exe

windows7-x64

10

fb26d5387f...32.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fb26d5387f1f77bb39de6d6498a95432

  • Size

    3.6MB

  • Sample

    220825-yae3jaafg5

  • MD5

    fb26d5387f1f77bb39de6d6498a95432

  • SHA1

    6591f4b3716991ee7c54f5bf18947b272c25c23e

  • SHA256

    82d822ac4b4c596ebd0642a7227fce850f0e01cc949fe809692e3a3b1a685ba5

  • SHA512

    f480389273cbeea3bcfb10cd2f44f7f76f9f24f1fe7568d07357417c3326acb1cb6419b8fa506b90ec652217320b42b868916165fd386cb43ce5d8f4adc5a34c

  • SSDEEP

    98304:oaPoBhz1aRxcSUDk36SAEdhvxWa9P5L3R8yAVp2HI:oaPe1Cxcxk3ZAEUadFR8yc4HI

Score
10/10
wannacrydiscoveryransomwareworm

Malware Config

Targets

    • Target

      fb26d5387f1f77bb39de6d6498a95432

    • Size

      3.6MB

    • MD5

      fb26d5387f1f77bb39de6d6498a95432

    • SHA1

      6591f4b3716991ee7c54f5bf18947b272c25c23e

    • SHA256

      82d822ac4b4c596ebd0642a7227fce850f0e01cc949fe809692e3a3b1a685ba5

    • SHA512

      f480389273cbeea3bcfb10cd2f44f7f76f9f24f1fe7568d07357417c3326acb1cb6419b8fa506b90ec652217320b42b868916165fd386cb43ce5d8f4adc5a34c

    • SSDEEP

      98304:oaPoBhz1aRxcSUDk36SAEdhvxWa9P5L3R8yAVp2HI:oaPe1Cxcxk3ZAEUadFR8yc4HI

    Score
    10/10
    wannacrydiscoveryransomwareworm

    • Wannacry

      WannaCry is a ransomware cryptoworm.

      ransomwarewormwannacry

    • Contacts a large (2765) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Contacts a large (1050) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

3
T1046

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks