General
-
Target
a8d8ae8af46f4ca16d70538fe9327158_JaffaCakes118
-
Size
5.0MB
-
Sample
240614-kxr4qatcqb
-
MD5
a8d8ae8af46f4ca16d70538fe9327158
-
SHA1
d936c731010229b3559937c79240729d0d8d871c
-
SHA256
9bb4defe23e0d9780f6109b2f762f59529d0dbee93ba1a82f7174883e7e7638e
-
SHA512
b2d3d9988648e5eb1e25f50abde320d51330ea4130b2469e4816e2893aa0f1eb444deedec98d1586e0a4d421652e6cac8c41c7fe5c41a39f48908ceda1a9a5ed
-
SSDEEP
98304:dDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2H:dDqPe1Cxcxk3ZAEUadzR8yc4H
Malware Config
Targets
-
-
Target
a8d8ae8af46f4ca16d70538fe9327158_JaffaCakes118
-
Size
5.0MB
-
MD5
a8d8ae8af46f4ca16d70538fe9327158
-
SHA1
d936c731010229b3559937c79240729d0d8d871c
-
SHA256
9bb4defe23e0d9780f6109b2f762f59529d0dbee93ba1a82f7174883e7e7638e
-
SHA512
b2d3d9988648e5eb1e25f50abde320d51330ea4130b2469e4816e2893aa0f1eb444deedec98d1586e0a4d421652e6cac8c41c7fe5c41a39f48908ceda1a9a5ed
-
SSDEEP
98304:dDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2H:dDqPe1Cxcxk3ZAEUadzR8yc4H
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3200) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-