wannacry | a68bcbb24666e4acfe96874f03f3bca170ac800980373e181f01db433736eebc | Triage

Resubmissions

29-08-2024 06:15

240829-g1eq1szaqn 10

29-08-2024 06:12

240829-gyf63axcqc 10

Sharing

General

Target

c858b6229d33818de24f3549253298d9_JaffaCakes118
Size

5.0MB
Sample

240829-g1eq1szaqn
MD5

c858b6229d33818de24f3549253298d9
SHA1

fa0aba1ca5228cf33d3b1bf3cb94887d89c741b0
SHA256

a68bcbb24666e4acfe96874f03f3bca170ac800980373e181f01db433736eebc
SHA512

9bbb0aa242c20d1055043868058bdc2fbf4ab338f2d96822adb24e2dc7f340e854054dc7bd038d35ec3796e4d36790b200069303ff419673a6a69da8ef4be3e2
SSDEEP

49152:znAQqMSPbcBVq/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9PAMEd:TDqPoBc1aRxcSUDk36SAEdhvxWa9P5S

Score

10^/10

wannacry discovery ransomware worm

Malware Config

Targets

- Target
  
  c858b6229d33818de24f3549253298d9_JaffaCakes118
- Size
  
  5.0MB
- MD5
  
  c858b6229d33818de24f3549253298d9
- SHA1
  
  fa0aba1ca5228cf33d3b1bf3cb94887d89c741b0
- SHA256
  
  a68bcbb24666e4acfe96874f03f3bca170ac800980373e181f01db433736eebc
- SHA512
  
  9bbb0aa242c20d1055043868058bdc2fbf4ab338f2d96822adb24e2dc7f340e854054dc7bd038d35ec3796e4d36790b200069303ff419673a6a69da8ef4be3e2
- SSDEEP
  
  49152:znAQqMSPbcBVq/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9PAMEd:TDqPoBc1aRxcSUDk36SAEdhvxWa9P5S
Score

10^/10

wannacry discovery ransomware worm
- Wannacry
  WannaCry is a ransomware cryptoworm.
  ransomware worm wannacry
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

wannacrydiscoveryransomwareworm

behavioral2

wannacrydiscoveryransomwareworm