General
-
Target
c780695e67460a79b2f51ff3fe1e2b63_JaffaCakes118
-
Size
5.0MB
-
Sample
240828-x5ws4asarb
-
MD5
c780695e67460a79b2f51ff3fe1e2b63
-
SHA1
3e6971f31861aa47feba4fdc83a47b2b7a312385
-
SHA256
7b83e2b619cf6fcc242e066415bf3631c4aa87144e0d595f118f1ee97c156a6c
-
SHA512
efa80ffd3f6fe3dc9db97956f7a1e5fadd0f87e42bfd8516db42c4fb513677a58e321871d61f1d4dbacbcdf72b969878681dd8d46727e6b083c0b0e6117da6e3
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVpNZH:TDqPe1Cxcxk3ZAEUadzR8ycPZH
Malware Config
Targets
-
-
Target
c780695e67460a79b2f51ff3fe1e2b63_JaffaCakes118
-
Size
5.0MB
-
MD5
c780695e67460a79b2f51ff3fe1e2b63
-
SHA1
3e6971f31861aa47feba4fdc83a47b2b7a312385
-
SHA256
7b83e2b619cf6fcc242e066415bf3631c4aa87144e0d595f118f1ee97c156a6c
-
SHA512
efa80ffd3f6fe3dc9db97956f7a1e5fadd0f87e42bfd8516db42c4fb513677a58e321871d61f1d4dbacbcdf72b969878681dd8d46727e6b083c0b0e6117da6e3
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVpNZH:TDqPe1Cxcxk3ZAEUadzR8ycPZH
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3339) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-