General

  • Target

    2024-05-16_58e817a39b9cc2b0ad31e2230757c0d3_wannacry

  • Size

    3.6MB

  • Sample

    240516-e7namacb5y

  • MD5

    58e817a39b9cc2b0ad31e2230757c0d3

  • SHA1

    54f187b00a9df8d0ca48f20c1ab08ef6107a20d2

  • SHA256

    cc729460e1cf7b7f89934aaa4fa258086ec9eb5fd6407670cf6413dbb2eae519

  • SHA512

    1337665ab745023cfe677df81f8c98df2b0986a71b534f8eca7ae79b5fed3766ea77e4ad3e93a225d3e6d235c9b4635acc2c391633ac63f7f686e4b0c62b71a2

  • SSDEEP

    24576:XbLgdrgDdmMSirYbcMNgef0QeQjG/D8kIqRYOAdNLKz6626M+vbOSSqTPVXmiHkj:XnREMSPbcBVQej/12NRx+TSqTdX1HkQ

Malware Config

Targets

    • Target

      2024-05-16_58e817a39b9cc2b0ad31e2230757c0d3_wannacry

    • Size

      3.6MB

    • MD5

      58e817a39b9cc2b0ad31e2230757c0d3

    • SHA1

      54f187b00a9df8d0ca48f20c1ab08ef6107a20d2

    • SHA256

      cc729460e1cf7b7f89934aaa4fa258086ec9eb5fd6407670cf6413dbb2eae519

    • SHA512

      1337665ab745023cfe677df81f8c98df2b0986a71b534f8eca7ae79b5fed3766ea77e4ad3e93a225d3e6d235c9b4635acc2c391633ac63f7f686e4b0c62b71a2

    • SSDEEP

      24576:XbLgdrgDdmMSirYbcMNgef0QeQjG/D8kIqRYOAdNLKz6626M+vbOSSqTPVXmiHkj:XnREMSPbcBVQej/12NRx+TSqTdX1HkQ

    • Wannacry

      WannaCry is a ransomware cryptoworm.

    • Contacts a large (3264) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks