General
-
Target
1893a0b1c66dfd942fbeeff510913e35beedbddc516768a785dec0a7290365d5
-
Size
190KB
-
Sample
240416-l1daeafb85
-
MD5
d71426ead79796a9322552875a3acefc
-
SHA1
0678795b18632c5fad77549cf3cdc98c9bbb9607
-
SHA256
1893a0b1c66dfd942fbeeff510913e35beedbddc516768a785dec0a7290365d5
-
SHA512
bce024f62a71d099ea2d47590370b9876167721575c669ebd3ba449034660129a22ce6f46b1483c2ad7cac584ca56572cf0d08b86b2aaab68c6cbba332f5243b
-
SSDEEP
3072:E1ddyJGvQcvKSkFkkg8zb7UfVVYzZfYu5FLDKG99BK/IaRrSBGRmR2+s/pm1+VZB:4ddHov48zb7vfV5UG9/KJJ8GRR+J9HQr
Static task
static1
Behavioral task
behavioral1
Sample
be22645c61949ad6a077373a7d6cd85e3fae44315632f161adc4c99d5a8e6844.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
be22645c61949ad6a077373a7d6cd85e3fae44315632f161adc4c99d5a8e6844.exe
Resource
win10v2004-20240412-en
Malware Config
Extracted
C:\Users\Admin\Documents\!Please Read Me!.txt
wannacry
15zGqZCTcys6eCjDkE3DypCjXi6QWRV6V1
Targets
-
-
Target
be22645c61949ad6a077373a7d6cd85e3fae44315632f161adc4c99d5a8e6844.exe
-
Size
224KB
-
MD5
5c7fb0927db37372da25f270708103a2
-
SHA1
120ed9279d85cbfa56e5b7779ffa7162074f7a29
-
SHA256
be22645c61949ad6a077373a7d6cd85e3fae44315632f161adc4c99d5a8e6844
-
SHA512
a15f97fad744ccf5f620e5aabb81f48507327b898a9aa4287051464019e0f89224c484e9691812e166471af9beaddcfc3deb2ba878658761f4800663beef7206
-
SSDEEP
3072:Y059femWRwTs/dbelj0X8/j84pcRXPlU3Upt3or4H84lK8PtpLzLsR/EfcZ:+5RwTs/dSXj84mRXPemxdBlPvLzLeZ
Score10/10-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Sets desktop wallpaper using registry
-