General
-
Target
23b42e30bcbbc5649f189525a02758cf_JaffaCakes118
-
Size
5.0MB
-
Sample
240508-hqmjjsag53
-
MD5
23b42e30bcbbc5649f189525a02758cf
-
SHA1
07a54b3c3a3df399ace3f557423b5ca539a4a91b
-
SHA256
571e7603ef71138aa1423e6d7e0111c7efaf54a9844471638d899e124db888de
-
SHA512
19ba831999a89a0aeb0ea3872842d51cf52e15032376c5135c5f51a8334f2c4c82a3811c9a2305e3d476eb7976ec317d89c53f7491dd4ecf230394aead38f112
-
SSDEEP
98304:d8qPoBhz1aRxcSUDk36SAEdhvxWa9P5UBr:d8qPe1Cxcxk3ZAEUaduBr
Malware Config
Targets
-
-
Target
23b42e30bcbbc5649f189525a02758cf_JaffaCakes118
-
Size
5.0MB
-
MD5
23b42e30bcbbc5649f189525a02758cf
-
SHA1
07a54b3c3a3df399ace3f557423b5ca539a4a91b
-
SHA256
571e7603ef71138aa1423e6d7e0111c7efaf54a9844471638d899e124db888de
-
SHA512
19ba831999a89a0aeb0ea3872842d51cf52e15032376c5135c5f51a8334f2c4c82a3811c9a2305e3d476eb7976ec317d89c53f7491dd4ecf230394aead38f112
-
SSDEEP
98304:d8qPoBhz1aRxcSUDk36SAEdhvxWa9P5UBr:d8qPe1Cxcxk3ZAEUaduBr
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3329) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-