General

  • Target

    WannaCryæ¼æ´žé˜²å¾¡å·¥å…·.exe

  • Size

    2.7MB

  • Sample

    230324-ql3zqsee59

  • MD5

    3ca7808debb1f860ca703bb1923e09b3

  • SHA1

    b8d2f3070e7d580918381ddfe8fc8c854a0ca310

  • SHA256

    e32f164aaf85732998c5d8b43f222a916d67ba62809af9406c50415bb4f19347

  • SHA512

    47310dd449486a37bcedea94deae064bcc94c59b1f6be6b1bd4df05994dadc3f2e8380aff555f01baa1640a64c4dcb8669740bb70e11244d91ba811075545192

  • SSDEEP

    49152:7ysVgzOTodcT+Np/LoLvlmHQVSaQyNudND4QJLsHbF5vilpOlpaOA4:GscIodX/LoLvlmHc7NQD4ALspJqQc2

Score
7/10

Malware Config

Targets

    • Target

      WannaCryæ¼æ´žé˜²å¾¡å·¥å…·.exe

    • Size

      2.7MB

    • MD5

      3ca7808debb1f860ca703bb1923e09b3

    • SHA1

      b8d2f3070e7d580918381ddfe8fc8c854a0ca310

    • SHA256

      e32f164aaf85732998c5d8b43f222a916d67ba62809af9406c50415bb4f19347

    • SHA512

      47310dd449486a37bcedea94deae064bcc94c59b1f6be6b1bd4df05994dadc3f2e8380aff555f01baa1640a64c4dcb8669740bb70e11244d91ba811075545192

    • SSDEEP

      49152:7ysVgzOTodcT+Np/LoLvlmHQVSaQyNudND4QJLsHbF5vilpOlpaOA4:GscIodX/LoLvlmHc7NQD4ALspJqQc2

    Score
    7/10
    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Bootkit

1
T1067

Tasks