Overview

overview

10

Static

static

3

2024-07-28...ry.exe

windows7-x64

10

2024-07-28...ry.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-07-28_061a6d2ebc704e34ddc6a823778e2517_wannacry

  • Size

    5.0MB

  • Sample

    240728-nhtwjsyepg

  • MD5

    061a6d2ebc704e34ddc6a823778e2517

  • SHA1

    aeb6f32b7b67287a2aa896161520275f1e2edd5d

  • SHA256

    f758cf7977f50737e54197b0e049daa8aef652e4697893b2d2aa3b32ab1256a2

  • SHA512

    ec7598c252616e385b17ec6083018188b74e8d62bad4d1147413650cd5f6f4cdd30d66f9045e976c78e178e2d0a1ff8fec54661009c9caa0c1eb3d1ad574a022

  • SSDEEP

    12288:GQbLgmluCtgQbaIMu7L5NVErCA4z2g6rTcbc:tbLgurgDdmMSirYbc

Score
10/10
wannacrydiscoveryransomwareworm

Malware Config

Targets

    • Target

      2024-07-28_061a6d2ebc704e34ddc6a823778e2517_wannacry

    • Size

      5.0MB

    • MD5

      061a6d2ebc704e34ddc6a823778e2517

    • SHA1

      aeb6f32b7b67287a2aa896161520275f1e2edd5d

    • SHA256

      f758cf7977f50737e54197b0e049daa8aef652e4697893b2d2aa3b32ab1256a2

    • SHA512

      ec7598c252616e385b17ec6083018188b74e8d62bad4d1147413650cd5f6f4cdd30d66f9045e976c78e178e2d0a1ff8fec54661009c9caa0c1eb3d1ad574a022

    • SSDEEP

      12288:GQbLgmluCtgQbaIMu7L5NVErCA4z2g6rTcbc:tbLgurgDdmMSirYbc

    Score
    10/10
    wannacrydiscoveryransomwareworm

    • Wannacry

      WannaCry is a ransomware cryptoworm.

      ransomwarewormwannacry

    • Contacts a large (3078) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks