General
-
Target
2023-12-09_501506dd6c96eaf9d9a949ec66426541_wannacry
-
Size
3.6MB
-
Sample
231210-q3x5taeadk
-
MD5
501506dd6c96eaf9d9a949ec66426541
-
SHA1
756fa974117f6cb088bc0d23a0177f5d3f8b0a08
-
SHA256
02b51818960b96e62288a3522cb9306e9a71950cb0f84a5e91285baa6dc5a080
-
SHA512
66bc6b508cbf71cc50caa971f3968943ac29ed04c0396db389002a48af8c6a3a42cf6a58054d93692e51831cda8cd0c54932f0ca281fcc0945e51e684d30a173
-
SSDEEP
98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9P5A3R:yDqPe1Cxcxk3ZAEUadSB
Malware Config
Targets
-
-
Target
2023-12-09_501506dd6c96eaf9d9a949ec66426541_wannacry
-
Size
3.6MB
-
MD5
501506dd6c96eaf9d9a949ec66426541
-
SHA1
756fa974117f6cb088bc0d23a0177f5d3f8b0a08
-
SHA256
02b51818960b96e62288a3522cb9306e9a71950cb0f84a5e91285baa6dc5a080
-
SHA512
66bc6b508cbf71cc50caa971f3968943ac29ed04c0396db389002a48af8c6a3a42cf6a58054d93692e51831cda8cd0c54932f0ca281fcc0945e51e684d30a173
-
SSDEEP
98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9P5A3R:yDqPe1Cxcxk3ZAEUadSB
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (2852) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Modifies file permissions
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-