General
-
Target
afec3cf286a0196baefc26749e251633_JaffaCakes118
-
Size
5.0MB
-
Sample
240615-xtafqawbkk
-
MD5
afec3cf286a0196baefc26749e251633
-
SHA1
857996bcb6caa1f144cf55e4a6301a4d03ec6c2e
-
SHA256
287d1a9d07d61252fafc01a21aca6dc59f610e21dc4c87d54a6ec93b9b37fbeb
-
SHA512
a5103e4c114524f5b1bdcc6e08e60354e1a923ce0aee7d150b4407b258746861cc9c22de0a912ba0cb9897a86476f0e9528c8645f08bdac242724966c7e7c63b
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9k593R8yAVp2H:TDqPe1Cxcxk3ZAEUaGzR8yc4H
Malware Config
Targets
-
-
Target
afec3cf286a0196baefc26749e251633_JaffaCakes118
-
Size
5.0MB
-
MD5
afec3cf286a0196baefc26749e251633
-
SHA1
857996bcb6caa1f144cf55e4a6301a4d03ec6c2e
-
SHA256
287d1a9d07d61252fafc01a21aca6dc59f610e21dc4c87d54a6ec93b9b37fbeb
-
SHA512
a5103e4c114524f5b1bdcc6e08e60354e1a923ce0aee7d150b4407b258746861cc9c22de0a912ba0cb9897a86476f0e9528c8645f08bdac242724966c7e7c63b
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9k593R8yAVp2H:TDqPe1Cxcxk3ZAEUaGzR8yc4H
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3348) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-