General
-
Target
3109b65e8686e4baa0113616a10993f3_JaffaCakes118
-
Size
5.0MB
-
Sample
240510-zw7kcahe71
-
MD5
3109b65e8686e4baa0113616a10993f3
-
SHA1
2398716f9106b2fba069b3f9ed9607fbb211efe7
-
SHA256
ff74d29ec91885d27016c0057a576c092dcaec22501c1028c77cccb918f7abce
-
SHA512
013db95bfa715d03c829f9b8b278221013da3d48dca06e92b97addd37288dcc14199312bb0a250ef25c4f9ca258f9453d7142c9fb8f5fd3c112ee431188ebda1
-
SSDEEP
49152:SnAQqMSPbcBVqhnvxJM0H9PAMEcaEau3R8yAH1plAH:+DqPoBQhvxWa9P593R8yAVp2H
Malware Config
Targets
-
-
Target
3109b65e8686e4baa0113616a10993f3_JaffaCakes118
-
Size
5.0MB
-
MD5
3109b65e8686e4baa0113616a10993f3
-
SHA1
2398716f9106b2fba069b3f9ed9607fbb211efe7
-
SHA256
ff74d29ec91885d27016c0057a576c092dcaec22501c1028c77cccb918f7abce
-
SHA512
013db95bfa715d03c829f9b8b278221013da3d48dca06e92b97addd37288dcc14199312bb0a250ef25c4f9ca258f9453d7142c9fb8f5fd3c112ee431188ebda1
-
SSDEEP
49152:SnAQqMSPbcBVqhnvxJM0H9PAMEcaEau3R8yAH1plAH:+DqPoBQhvxWa9P593R8yAVp2H
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3200) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-