General
-
Target
831e8a827985b4e3eb991495cbedb297_JaffaCakes118
-
Size
5.0MB
-
Sample
240530-fsalnagg25
-
MD5
831e8a827985b4e3eb991495cbedb297
-
SHA1
634ff381e971e3a6793f08eea39cfdeedee9b3de
-
SHA256
7e1df58e6f7f3f3fd062815a0a4e77e96f9d537846a81d7a29e6e5481fc3b13e
-
SHA512
cb28fd78474622c6f971bdb3e823e2f63881056ee5c6b5a990dd611953fdf3ed8d151ca359096b2dce2269190458574c97257e8476b0a6fccb010487a4177e91
-
SSDEEP
98304:d8qPoBhz1aRxcSUDk36SAEdhvxWa9P5wk2H:d8qPe1Cxcxk3ZAEUadKH
Malware Config
Targets
-
-
Target
831e8a827985b4e3eb991495cbedb297_JaffaCakes118
-
Size
5.0MB
-
MD5
831e8a827985b4e3eb991495cbedb297
-
SHA1
634ff381e971e3a6793f08eea39cfdeedee9b3de
-
SHA256
7e1df58e6f7f3f3fd062815a0a4e77e96f9d537846a81d7a29e6e5481fc3b13e
-
SHA512
cb28fd78474622c6f971bdb3e823e2f63881056ee5c6b5a990dd611953fdf3ed8d151ca359096b2dce2269190458574c97257e8476b0a6fccb010487a4177e91
-
SSDEEP
98304:d8qPoBhz1aRxcSUDk36SAEdhvxWa9P5wk2H:d8qPe1Cxcxk3ZAEUadKH
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3037) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-