Overview

overview

10

Static

static

3

bongo cat.exe

windows7-x64

10

bongo cat.exe

macos-10.15-amd64

4

Resubmissions

20-11-2024 06:38

241120-hd6fwssfla 3

03-08-2024 13:31

240803-qsqyravbjq 3

03-08-2024 13:26

240803-qptv8svajm 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bongo cat.exe

  • Size

    301KB

  • Sample

    240803-qptv8svajm

  • MD5

    b7067283b321191d6555082653665175

  • SHA1

    175641d8558ff5fdcfe5d410008fca5140f17c53

  • SHA256

    0ed3b73b3f8c77361ee617af553f2b88aa283317d0feae66ae0f7e1ab96a7d99

  • SHA512

    d97871b41b3953b5e99d78351be17b0805add38c0abbff9cdab4c88c2b5dd1df2067cae6485197990afff1ef7d50e12b70d93d106e1064efe9d8b73b03f9eaed

  • SSDEEP

    6144:peKoCiE/DFRaY4kdNQRhUUKtJ9Xzp+4wR4T+Ue6PPxBFO1:peKoC5/D3aidPHJDhw4+Ue6P

Score
10/10
wannacrydefense_evasiondiscoveryevasionexecutionimpactmacosransomwareworm

Malware Config

Extracted

Path

C:\Users\Admin\Desktop\@[email protected]

Family

wannacry

Ransom Note
Q: What's wrong with my files? A: Ooops, your important files are encrypted. It means you will not be able to access them anymore until they are decrypted. If you follow our instructions, we guarantee that you can decrypt all your files quickly and safely! Let's start decrypting! Q: What do I do? A: First, you need to pay service fees for the decryption. Please send $300 worth of bitcoin to this bitcoin address: 115p7UMMngoj1pMvkpHijcRdfJNXj6LrLn Next, please find an application file named "@[email protected]". It is the decrypt software. Run and follow the instructions! (You may need to disable your antivirus for a while.) Q: How can I trust? A: Don't worry about decryption. We will decrypt your files surely because nobody will trust us if we cheat users. * If you need our assistance, send a message by clicking <Contact Us> on the decryptor window. �
Wallets

115p7UMMngoj1pMvkpHijcRdfJNXj6LrLn

Targets

    • Target

      bongo cat.exe

    • Size

      301KB

    • MD5

      b7067283b321191d6555082653665175

    • SHA1

      175641d8558ff5fdcfe5d410008fca5140f17c53

    • SHA256

      0ed3b73b3f8c77361ee617af553f2b88aa283317d0feae66ae0f7e1ab96a7d99

    • SHA512

      d97871b41b3953b5e99d78351be17b0805add38c0abbff9cdab4c88c2b5dd1df2067cae6485197990afff1ef7d50e12b70d93d106e1064efe9d8b73b03f9eaed

    • SSDEEP

      6144:peKoCiE/DFRaY4kdNQRhUUKtJ9Xzp+4wR4T+Ue6PPxBFO1:peKoC5/D3aidPHJDhw4+Ue6P

    Score
    10/10
    wannacrydefense_evasiondiscoveryexecutionimpactransomwarewormevasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks