ERTAlert-WannaCry_Final[.]pdf | Triage

Submit
Reports

Overview

overview

6

Static

static

3

ERTAlert-W...al.pdf

windows10-1703-x64

6

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ERTAlert-WannaCry_Final.pdf

Resource

win10-20240404-en

windows10-1703-x64

13 signatures

150 seconds

General

Target

ERTAlert-WannaCry_Final.pdf
Size

458KB
MD5

cf6cb106e33fba39163075aca6006588
SHA1

70cc05b742cd3063d2af0e6439b66e6ad770e858
SHA256

e753275d64a65682373c556618744da82ec9fbe03dae72362346315062a701e8
SHA512

82240804e39f1197e9630e7a53f0a1e47cc0c45b2236b9d5ed37348bf92bd2d00f3bd81277fea4bd3f2d24ce47f85aa28fd1d032a77f28cfee1a56f1d25898ae
SSDEEP

12288:2Jo98hc5BFe+M6J1+TaqvtYPrYRECt68v811W:2Jo98uf3Me++qyM1s+

Score

3^/10

pdf link

Malware Config

Signatures

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Files

ERTAlert-WannaCry_Final.pdf
.pdf
- http://DDoSWarriors.com
- http://cwwnhwhlz52ma.oniongx7ekbenv2riucmf.onionxxlvbrloxvriy2c5.onion57g7spgrzlojinas.onion76jdd2ir2embyv47.onion
- https://blockchain.info/address/115p7UMMngoj1pMvkpHijcRdfJNXj6LrLnhttps://blockchain.info/address/12t9YDPgwueZ9NyMgw519p7AA8isjr6SMwhttps://blockchain.info/address/13AM4VW2dhxYgXeQepoHkHSQuy6NgaEb94The
- https://github.com/adamcaudill/EquationGroupLeak/tree/master/windows
- https://github.com/rapid7/metasploit-framework/issues/8269#issuecomment-299364287
- https://github.com/rapid7/metasploit-framework/issues/8269#issuecomment-301302687
- https://security.radware.com/
- https://technet.microsoft.com/en-us/library/security/ms17-010.aspx
- https://www.radware.com/Products/ERT/
- https://www.radware.com/underattack/
- https://www.virustotal.com/en/file/cd7542f2d7f2285ab524a57bc04ae1ad9306a15b9efbf56ea7b002d99d4b974f/analysis/
- Show all

© 2018-2025

Terms | Privacy