General
-
Target
59f69d3ccd7de0f6466ef39a95363b1b_JaffaCakes118
-
Size
5.0MB
-
Sample
240719-b5w8zaxbkl
-
MD5
59f69d3ccd7de0f6466ef39a95363b1b
-
SHA1
f3256256b4dda2ddfefb99def8170584b44fd7cf
-
SHA256
3bae088144ef5d7af909a7617f4b9712212099415364c6cccb432ae2313e2752
-
SHA512
3eef979e6c2f4f73d13573d71a077c582270b5f719986d2a983034e967e255a8d41f1146157c151679637ee85db54f5f790ec7fabb159ae61798ec994182f0ff
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhv093R8yAVp2H:+DqPe1Cxcxk3ZAEeR8yc4H
Malware Config
Targets
-
-
Target
59f69d3ccd7de0f6466ef39a95363b1b_JaffaCakes118
-
Size
5.0MB
-
MD5
59f69d3ccd7de0f6466ef39a95363b1b
-
SHA1
f3256256b4dda2ddfefb99def8170584b44fd7cf
-
SHA256
3bae088144ef5d7af909a7617f4b9712212099415364c6cccb432ae2313e2752
-
SHA512
3eef979e6c2f4f73d13573d71a077c582270b5f719986d2a983034e967e255a8d41f1146157c151679637ee85db54f5f790ec7fabb159ae61798ec994182f0ff
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhv093R8yAVp2H:+DqPe1Cxcxk3ZAEeR8yc4H
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3106) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-