General

  • Target

    .

  • Size

    108KB

  • Sample

    230331-2sfcssfd9y

  • MD5

    2bf1f88ce14c20b584c1ae9d10183ed3

  • SHA1

    a0c4340d890e0def8e6b77e889a99865dae83856

  • SHA256

    204c92fc4f98348ddfa0dce7672b4200610765aed764bca8387170225a200ce9

  • SHA512

    1df343e95eed249ca011c40552c4c5def25e7eaf1b4dbc1d396797c6604ca78246b15559abd24190376f4fb38cef7465df17ac2c07ddf15c37712dc93d92f37f

  • SSDEEP

    1536:DVkbYZtWfieTwp0aBHk/bt8VB7R3s7w7wyJVFUwAg/qOs0:WhA0aUbtE3s7w7wUVASqOs0

Score
10/10

Malware Config

Extracted

Ransom Note
Windows Mac Linux Android iOS Huawei All Categories Reviews Home / Security & Privacy / Antivirus Tools / WannaCry Ransomware Windows Security Update WannaCry Ransomware Windows Security Update 4012598 Download Free Version Review Publisher Description WannaCry Ransomware Protection WannaCry ransomware is the most aggressive malware attack launched so far, affecting users in more than 150 countries. The ransomware uses vulnerabilities in older Windows versions (starting with Windows 8 and down) which allows spreading like a worm in Windows-based networks. Once a computer is infected, all files are encrypted and the personal data is held hostage. WannaCry displays a screen that supposedly will allow you to decrypt the files if you pay a ransom using Bitcoins, an untraceable virtual currency - although this does not guarantee that the files will be decrypted. This security update resolves vulnerabilities in older Windows versions. Depending on your operating system, these are the direct download links to the Windows patches that protects your computer from WannaCry ransomware (also called WannaCrypt): Security Update for Windows 8 (KB4012598): http://download.windowsupdate.com/c/msdownload/update/software/secu/2017/05/windows8-rt-kb4012598-x86_a0f1c953a24dd042acc540c59b339f55fb18f594.msu Security Update for Windows XP SP3 (KB4012598): http://download.windowsupdate.com/d/csa/csa/secu/2017/02/windowsxp-kb4012598-x86-custom-enu_eceb7d5023bbb23c0dc633e46b9c2f14fa6ee9dd.exe Security Update for Windows Vista (KB4012598): http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.0-kb4012598-x86_13e9b3d77ba5599764c296075a796c16a85c745c.msu Security Update for Windows Server 2008 (KB4012598): http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.0-kb4012598-x86_13e9b3d77ba5599764c296075a796c16a85c745c.msu Security Update for Windows Server 2003 for x64-based Systems (KB4012598): http://download.windowsupdate.com/d/csa/csa/secu/2017/02/windowsserver2003-kb4012598-x64-custom-enu_f24d8723f246145524b9030e4752c96430981211.exe Security Update for Windows 8 for x64-based Systems (KB4012598): http://download.windowsupdate.com/c/msdownload/update/software/secu/2017/05/windows8-rt-kb4012598-x64_f05841d2e94197c2dca4457f1b895e8f632b7f8e.msu Security Update for Windows XP SP3 for XPe (KB4012598): http://download.windowsupdate.com/c/csa/csa/secu/2017/02/windowsxp-kb4012598-x86-embedded-custom-enu_8f2c266f83a7e1b100ddb9acd4a6a3ab5ecd4059.exe Security Update for Windows Server 2003 (KB4012598): http://download.windowsupdate.com/c/csa/csa/secu/2017/02/windowsserver2003-kb4012598-x86-custom-enu_f617caf6e7ee6f43abe4b386cb1d26b3318693cf.exe Security Update for Windows XP SP2 for x64-based Systems (KB4012598): http://download.windowsupdate.com/d/csa/csa/secu/2017/02/windowsserver2003-kb4012598-x64-custom-enu_f24d8723f246145524b9030e4752c96430981211.exe Security Update for Windows Vista for x64-based Systems (KB4012598): http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.0-kb4012598-x64_6a186ba2b2b98b2144b50f88baf33a5fa53b5d76.msu Security Update for Windows Server 2008 for Itanium-based Systems (KB4012598): http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.0-kb4012598-ia64_83a6f5a70588b27623b11c42f1c8124a25d489de.msu Security Update for Windows Server 2008 for x64-based Systems (KB4012598): http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.0-kb4012598-x64_6a186ba2b2b98b2144b50f88baf33a5fa53b5d76.msu Security Update for WES09 and POSReady 2009 (KB4012598): http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windowsxp-kb4012598-x86-embedded-enu_9515c11bc77e39695b83cb6f0e41119387580e30.exe To avoid losing important data due to WannaCry Ransomware or other threats, it's also recommended to keep online backups using popular programs such as FBackup or Backup4all. Download WannaCry Ransomware Windows Security Update WannaCry Ransomware Windows Security Update Description RELATED PROGRAMS Our Recommendations Protect From WannaCry FREE In Protect From WannaCry application, we will show to all of you a step by step how to protect yourself from WannaCry Ransomware. WannaCry also known by the names WannaCrypt WanaCrypt0r 2.0, Wanna Decryptor and other... Continue to app Rating: Protector Plus Internet Security 64 Bit TRIAL Protector Plus Internet security software designed for Windows XP, Windows Vista,Windows7 and Windows8. This product provides 100% protection against viruses, trojans, worms, backdoors, spyware, adware, exploits, password... Download Rating: Protector Plus Internet Security TRIAL Protector Plus Internet security software designed for Windows XP, Windows Vista,Windows7 and Windows8. This product provides 100% protection against viruses, trojans, worms, backdoors, spyware, adware, exploits, password... Download Rating: RECOMMENDED SOFTWARE Backup4all Pro Back-up from/to the cloud. Protect your data. Configure once and forget about it. Read More Click stars to rate this APP! 3.0/5 16 5.0/5 104 2023-01-19 Windows Windows Free Windows Mac Linux Android iOS Developers Reviews Contact DMCA Request Submit Software Terms of Use Privacy Policy Sitemap Illusion Magnifier + Flashlight FarmVille 2: Tropic Escape Maze Game Horror Prank Rope Hero Backup Software PDF Creator Free PDF Converter Free Backup Software © Copyright Softland . All rights reserved. (function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start': new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0], j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src= 'https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f); })(window,document,'script','dataLayer','GTM-TDXFL7'); $(() => { $('#active-rating').jRate({ rating: 2.5, backgroundColor: '#CCCCCC', strokeColor: '#333333', startColor: '#008085', endColor: '#008085', width: 32, height: 32, precision: 0.5, minSelected: 0.5, onSet: (rating) => { smartJ$Browser.AjaxRequestFromURL('//www.soft112.com/rate-app?id=wannacry-ransomware-windows-security-update&rating=' + encodeURIComponent(rating), 'GET', 'json').done((msg) => { if(msg.result === 'OK') { //smartJ$Browser.AlertDialog('Your rating of <b>' + rating + '</b> has been posted. Thank you !', '', 'OK'); smartJ$Browser.GrowlNotificationAdd('Thank You', 'Your rating for this program was <b>' + rating + '</b> of <b>5</b>.', '', 3500, false, 'gritter-s112-hilite'); } else { smartJ$Browser.GrowlNotificationAdd(msg.result, '' + msg.message, '', 3500, false, 'gritter-s112-err'); } }).fail((msg) => { alert('ERROR (Rating): Invalid Server Response !', '' + msg.responseText); }); } }); $('#users-rating').jRate({ readOnly: true, rating: the_rating_of_user, backgroundColor: '#DDDDDD', strokeColor: '#888888', startColor: '#009196', endColor: '#009196', width: 16, height: 16, precision: 0.5, minSelected: 0.5 }); if(the_rating_of_editor > 0) { $('#editor-rating').jRate({ readOnly: true, rating: the_rating_of_editor, backgroundColor: '#DDDDDD', strokeColor: '#888888', startColor: '#f0d700', endColor: '#f0d700', width: 16, height: 16, precision: 0.5, minSelected: 0.5 }); } else { $('#editor-td-rating').hide(); } //end if else });
URLs

http://download.windowsupdate.com/c/msdownload/update/software/secu/2017/05/windows8-rt-kb4012598-x86_a0f1c953a24dd042acc540c59b339f55fb18f594.msu

http://download.windowsupdate.com/d/csa/csa/secu/2017/02/windowsxp-kb4012598-x86-custom-enu_eceb7d5023bbb23c0dc633e46b9c2f14fa6ee9dd.exe

http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.0-kb4012598-x86_13e9b3d77ba5599764c296075a796c16a85c745c.msu

http://download.windowsupdate.com/d/csa/csa/secu/2017/02/windowsserver2003-kb4012598-x64-custom-enu_f24d8723f246145524b9030e4752c96430981211.exe

http://download.windowsupdate.com/c/msdownload/update/software/secu/2017/05/windows8-rt-kb4012598-x64_f05841d2e94197c2dca4457f1b895e8f632b7f8e.msu

http://download.windowsupdate.com/c/csa/csa/secu/2017/02/windowsxp-kb4012598-x86-embedded-custom-enu_8f2c266f83a7e1b100ddb9acd4a6a3ab5ecd4059.exe

http://download.windowsupdate.com/c/csa/csa/secu/2017/02/windowsserver2003-kb4012598-x86-custom-enu_f617caf6e7ee6f43abe4b386cb1d26b3318693cf.exe

http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.0-kb4012598-x64_6a186ba2b2b98b2144b50f88baf33a5fa53b5d76.msu

http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.0-kb4012598-ia64_83a6f5a70588b27623b11c42f1c8124a25d489de.msu

http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windowsxp-kb4012598-x86-embedded-enu_9515c11bc77e39695b83cb6f0e41119387580e30.exe

https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f

Targets

    • Target

      .

    • Size

      108KB

    • MD5

      2bf1f88ce14c20b584c1ae9d10183ed3

    • SHA1

      a0c4340d890e0def8e6b77e889a99865dae83856

    • SHA256

      204c92fc4f98348ddfa0dce7672b4200610765aed764bca8387170225a200ce9

    • SHA512

      1df343e95eed249ca011c40552c4c5def25e7eaf1b4dbc1d396797c6604ca78246b15559abd24190376f4fb38cef7465df17ac2c07ddf15c37712dc93d92f37f

    • SSDEEP

      1536:DVkbYZtWfieTwp0aBHk/bt8VB7R3s7w7wyJVFUwAg/qOs0:WhA0aUbtE3s7w7wUVASqOs0

    Score
    1/10

MITRE ATT&CK Enterprise v6

Tasks