General
-
Target
1791e7c46df7497e07fd0f678beaa31c_JaffaCakes118
-
Size
5.0MB
-
Sample
240505-n52vnshd3w
-
MD5
1791e7c46df7497e07fd0f678beaa31c
-
SHA1
7f6616a77325c892ec4c63ae1ca5f0d245722fd6
-
SHA256
368b1de4a66ae6549b5eadcfcee496ced9774011a890695fe12b355be546b6dd
-
SHA512
8b2b43cb2231f7a2dc612cf02b96d0437443a65df3407f3030d5a9a1692ee24f384d88ede82d8180348f9577387dc9fad92bae6fe7dfdfe25e0690ed034db855
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9P593jJ:TDqPe1Cxcxk3ZAEUadzj
Malware Config
Targets
-
-
Target
1791e7c46df7497e07fd0f678beaa31c_JaffaCakes118
-
Size
5.0MB
-
MD5
1791e7c46df7497e07fd0f678beaa31c
-
SHA1
7f6616a77325c892ec4c63ae1ca5f0d245722fd6
-
SHA256
368b1de4a66ae6549b5eadcfcee496ced9774011a890695fe12b355be546b6dd
-
SHA512
8b2b43cb2231f7a2dc612cf02b96d0437443a65df3407f3030d5a9a1692ee24f384d88ede82d8180348f9577387dc9fad92bae6fe7dfdfe25e0690ed034db855
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9P593jJ:TDqPe1Cxcxk3ZAEUadzj
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3364) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-