General
-
Target
18199888d6cc03fa3b1adee22012c083_JaffaCakes118
-
Size
5.0MB
-
Sample
240505-rsxxqscf31
-
MD5
18199888d6cc03fa3b1adee22012c083
-
SHA1
ea05e12f62e3d5955b2de7587aa4a8c98659c040
-
SHA256
a45856a40e829582bb45e4ef75bf43ff31679f8ca1d7106e6217db81b2c76e40
-
SHA512
b835b47ed895ec6bac52d1787166b32f65f6bc51f2b6774f3b83500b79c954e1d6cece9ec61446de12cf68d22050e3b5b854e618d5d9936f1ab7e022fde5b273
-
SSDEEP
98304:d8qPoBhz1aRxcSUDk36SAEdhvxWa94593R8yAVp2s:d8qPe1Cxcxk3ZAEUayzR8yc4s
Malware Config
Targets
-
-
Target
18199888d6cc03fa3b1adee22012c083_JaffaCakes118
-
Size
5.0MB
-
MD5
18199888d6cc03fa3b1adee22012c083
-
SHA1
ea05e12f62e3d5955b2de7587aa4a8c98659c040
-
SHA256
a45856a40e829582bb45e4ef75bf43ff31679f8ca1d7106e6217db81b2c76e40
-
SHA512
b835b47ed895ec6bac52d1787166b32f65f6bc51f2b6774f3b83500b79c954e1d6cece9ec61446de12cf68d22050e3b5b854e618d5d9936f1ab7e022fde5b273
-
SSDEEP
98304:d8qPoBhz1aRxcSUDk36SAEdhvxWa94593R8yAVp2s:d8qPe1Cxcxk3ZAEUayzR8yc4s
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3341) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-