General
-
Target
code.ps1
-
Size
6B
-
Sample
240316-et59aade38
-
MD5
5d7608e47d1befbebcbb6318de97862c
-
SHA1
fcb8d8c65c666c7c2dc5e9bfa5a1f4d6f35763b8
-
SHA256
e1e05c7ab4f07972dfc7eeb956881121e8e881d12e139e26565e3c4ef7aca833
-
SHA512
6170813a6731c1780f1855659bc179d9ef48e38eb0f6440e28c4b11327549c9cb38c942db95cfd4a5b58a40195af777103fcb76768c68fff21da3fa42dcd22cf
Static task
static1
Behavioral task
behavioral1
Sample
code.ps1
Resource
win7-20231129-en
Malware Config
Extracted
C:\Users\Admin\Documents\@[email protected]
wannacry
12t9YDPgwueZ9NyMgw519p7AA8isjr6SMw
Targets
-
-
Target
code.ps1
-
Size
6B
-
MD5
5d7608e47d1befbebcbb6318de97862c
-
SHA1
fcb8d8c65c666c7c2dc5e9bfa5a1f4d6f35763b8
-
SHA256
e1e05c7ab4f07972dfc7eeb956881121e8e881d12e139e26565e3c4ef7aca833
-
SHA512
6170813a6731c1780f1855659bc179d9ef48e38eb0f6440e28c4b11327549c9cb38c942db95cfd4a5b58a40195af777103fcb76768c68fff21da3fa42dcd22cf
Score10/10-
Modifies file permissions
-
Legitimate hosting services abused for malware hosting/C2
-