General
-
Target
bcf49b12f6e217b79d08d875136261a6_JaffaCakes118
-
Size
5.0MB
-
Sample
240618-t92clawcpj
-
MD5
bcf49b12f6e217b79d08d875136261a6
-
SHA1
aa64b4ce4606cd813f23b161205572f1d761857f
-
SHA256
4b1569a959bee6e3778e64a93b43cf1806bc899bbfa51455b1628c5d4b00d199
-
SHA512
cb7f20b51460e64860967fa20e7b3e541e060cc389d479425a7a6df7a7bdbd1c828e249d9316fd6ccf42414876cf948051c9bac77f2d402a9960ee642d5f9363
-
SSDEEP
98304:+DqPoBhz1aRxcSUDkP6SAEdhvxWa9P593R8yAVp2H:+DqPe1CxcxkPZAEUadzR8yc4H
Malware Config
Targets
-
-
Target
bcf49b12f6e217b79d08d875136261a6_JaffaCakes118
-
Size
5.0MB
-
MD5
bcf49b12f6e217b79d08d875136261a6
-
SHA1
aa64b4ce4606cd813f23b161205572f1d761857f
-
SHA256
4b1569a959bee6e3778e64a93b43cf1806bc899bbfa51455b1628c5d4b00d199
-
SHA512
cb7f20b51460e64860967fa20e7b3e541e060cc389d479425a7a6df7a7bdbd1c828e249d9316fd6ccf42414876cf948051c9bac77f2d402a9960ee642d5f9363
-
SSDEEP
98304:+DqPoBhz1aRxcSUDkP6SAEdhvxWa9P593R8yAVp2H:+DqPe1CxcxkPZAEUadzR8yc4H
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3275) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-