General
-
Target
8bf453721de516d8eb6d38c925c87dd3091a0a72272b4a7dcf2957a8c307ed8d
-
Size
5.0MB
-
Sample
240814-ksgr7atamf
-
MD5
4213becfcebbf1e3a5bb2e438a3310a2
-
SHA1
8fffa27d3f481cfb2d4c4c0db496c5f47e651e19
-
SHA256
8bf453721de516d8eb6d38c925c87dd3091a0a72272b4a7dcf2957a8c307ed8d
-
SHA512
c1343c70c426d2ce736b8a90d3a5a772fc809289e521ede7268664ad4124ee90c9137efc529e319aa7a70b928f7dde5cef63882a99614ee96e3ec5b35e5d99b6
-
SSDEEP
49152:OnREMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnv:6SPoBhz1aRxcSUDk36SAEdhv
Malware Config
Targets
-
-
Target
8bf453721de516d8eb6d38c925c87dd3091a0a72272b4a7dcf2957a8c307ed8d
-
Size
5.0MB
-
MD5
4213becfcebbf1e3a5bb2e438a3310a2
-
SHA1
8fffa27d3f481cfb2d4c4c0db496c5f47e651e19
-
SHA256
8bf453721de516d8eb6d38c925c87dd3091a0a72272b4a7dcf2957a8c307ed8d
-
SHA512
c1343c70c426d2ce736b8a90d3a5a772fc809289e521ede7268664ad4124ee90c9137efc529e319aa7a70b928f7dde5cef63882a99614ee96e3ec5b35e5d99b6
-
SSDEEP
49152:OnREMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnv:6SPoBhz1aRxcSUDk36SAEdhv
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3003) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-