General
-
Target
a31a83473f8b2529838065eef621d516a5cfa53cd23d98b1a02fc1c78b29549e
-
Size
190KB
-
Sample
240417-rsy5ssdd61
-
MD5
bb91308b6935bccd5ffb9905d1fc9ffd
-
SHA1
0a2025e94e9f987c35563f7767f926682fa66f60
-
SHA256
a31a83473f8b2529838065eef621d516a5cfa53cd23d98b1a02fc1c78b29549e
-
SHA512
7b12859c9a82d6e6251f9f9a7d95358f897017521886bf9f23aefc26b57ab89eb5c60b01bb22756852c3cf15ae70ffb053c57ecc9e9d9c583ca6fdbaa88d354a
-
SSDEEP
3072:tKLbWJkLIxdOyxnhrHQnuAI1FBgQ7CiuAVWa2yrtawQpySPVLGqvt3JsMkD3xv35:kLbliRVQdI1PxZuLyrEwQpySGCVJ4LBp
Static task
static1
Behavioral task
behavioral1
Sample
be22645c61949ad6a077373a7d6cd85e3fae44315632f161adc4c99d5a8e6844.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
be22645c61949ad6a077373a7d6cd85e3fae44315632f161adc4c99d5a8e6844.exe
Resource
win10v2004-20240412-en
Malware Config
Extracted
C:\Users\Admin\Documents\!Please Read Me!.txt
wannacry
15zGqZCTcys6eCjDkE3DypCjXi6QWRV6V1
Targets
-
-
Target
be22645c61949ad6a077373a7d6cd85e3fae44315632f161adc4c99d5a8e6844.exe
-
Size
224KB
-
MD5
5c7fb0927db37372da25f270708103a2
-
SHA1
120ed9279d85cbfa56e5b7779ffa7162074f7a29
-
SHA256
be22645c61949ad6a077373a7d6cd85e3fae44315632f161adc4c99d5a8e6844
-
SHA512
a15f97fad744ccf5f620e5aabb81f48507327b898a9aa4287051464019e0f89224c484e9691812e166471af9beaddcfc3deb2ba878658761f4800663beef7206
-
SSDEEP
3072:Y059femWRwTs/dbelj0X8/j84pcRXPlU3Upt3or4H84lK8PtpLzLsR/EfcZ:+5RwTs/dSXj84mRXPemxdBlPvLzLeZ
Score10/10-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Sets desktop wallpaper using registry
-