General
-
Target
bandicam 2024-04-11 10-53-09-829.jpg
-
Size
649KB
-
Sample
240417-vbellsfg72
-
MD5
bfb3499da0e521ae83a99ef5617081d9
-
SHA1
eb54de2ca6051dc57aa332d673b07819bfb9b344
-
SHA256
9709306c752afd9a8588effced2dfd1fbaa2261578459ef9594a54942bc3f566
-
SHA512
1dadb0298945ab7d182542ff8f462aeef812bffceae1c6b5569ea9ad3fd5d2c4807aef98387338d594af980062e1db5c8a5bc75d686853f19ddac57c4956a269
-
SSDEEP
12288:lV6F0mo7yn5RsAdEmFar9CYIWDUYbh+wGnnh6+6yJIsLiLJ:lP7k56AdDw9ddDd5GnnB6dLJ
Static task
static1
Behavioral task
behavioral1
Sample
bandicam 2024-04-11 10-53-09-829.jpg
Resource
win10v2004-20240412-en
Malware Config
Extracted
C:\Users\Admin\Downloads\!Please Read Me!.txt
wannacry
15zGqZCTcys6eCjDkE3DypCjXi6QWRV6V1
Targets
-
-
Target
bandicam 2024-04-11 10-53-09-829.jpg
-
Size
649KB
-
MD5
bfb3499da0e521ae83a99ef5617081d9
-
SHA1
eb54de2ca6051dc57aa332d673b07819bfb9b344
-
SHA256
9709306c752afd9a8588effced2dfd1fbaa2261578459ef9594a54942bc3f566
-
SHA512
1dadb0298945ab7d182542ff8f462aeef812bffceae1c6b5569ea9ad3fd5d2c4807aef98387338d594af980062e1db5c8a5bc75d686853f19ddac57c4956a269
-
SSDEEP
12288:lV6F0mo7yn5RsAdEmFar9CYIWDUYbh+wGnnh6+6yJIsLiLJ:lP7k56AdDw9ddDd5GnnB6dLJ
Score10/10-
Downloads MZ/PE file
-
Drops startup file
-
Executes dropped EXE
-
Adds Run key to start application
-
Legitimate hosting services abused for malware hosting/C2
-
Sets desktop wallpaper using registry
-