General
-
Target
1e8e8eb9b0c25208b5c83be09430c010_JaffaCakes118
-
Size
5.0MB
-
Sample
240702-jwfhvsxbqj
-
MD5
1e8e8eb9b0c25208b5c83be09430c010
-
SHA1
be0ed07c7ec11f091b5a351bde73f78458d8c8e3
-
SHA256
ba40208a38500e7c001fede2b264ae758e115750c80384f67ed4163edc5d2644
-
SHA512
51ea750fa7e9a0b3ef8e9088e70ade172a80a860a471a1cbce004628ab6866fbe882d7f1091da9c169473751defb826045bfc5aef227d9d8c85a14d0c217a8dc
-
SSDEEP
98304:dDqPoBCRxcSUDk36SAEdhvxWa9P593R8yAVp2H:dDqPNxcxk3ZAEUadzR8yc4H
Malware Config
Targets
-
-
Target
1e8e8eb9b0c25208b5c83be09430c010_JaffaCakes118
-
Size
5.0MB
-
MD5
1e8e8eb9b0c25208b5c83be09430c010
-
SHA1
be0ed07c7ec11f091b5a351bde73f78458d8c8e3
-
SHA256
ba40208a38500e7c001fede2b264ae758e115750c80384f67ed4163edc5d2644
-
SHA512
51ea750fa7e9a0b3ef8e9088e70ade172a80a860a471a1cbce004628ab6866fbe882d7f1091da9c169473751defb826045bfc5aef227d9d8c85a14d0c217a8dc
-
SSDEEP
98304:dDqPoBCRxcSUDk36SAEdhvxWa9P593R8yAVp2H:dDqPNxcxk3ZAEUadzR8yc4H
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3211) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-