General
-
Target
cf4f46336abeec03630297f846d17482_JaffaCakes118
-
Size
5.0MB
-
Sample
240906-l97wda1dkh
-
MD5
cf4f46336abeec03630297f846d17482
-
SHA1
9bd7e03423cda2792e9f9dfc74fbf517fcbbc585
-
SHA256
f54fbfcb038af9a12d446f0150b97fef7a71ca02eec07c517f0ed00fdbea8185
-
SHA512
b4c5f054991a2a6c1298d92756a4ec423bdedcc6d853882e2a4c65275765b08258f2c46c5d48681dc60d26887f994d8baa48b3e60bc0df3054f28b570ef8f307
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9P593:TDqPe1Cxcxk3ZAEUadz
Malware Config
Targets
-
-
Target
cf4f46336abeec03630297f846d17482_JaffaCakes118
-
Size
5.0MB
-
MD5
cf4f46336abeec03630297f846d17482
-
SHA1
9bd7e03423cda2792e9f9dfc74fbf517fcbbc585
-
SHA256
f54fbfcb038af9a12d446f0150b97fef7a71ca02eec07c517f0ed00fdbea8185
-
SHA512
b4c5f054991a2a6c1298d92756a4ec423bdedcc6d853882e2a4c65275765b08258f2c46c5d48681dc60d26887f994d8baa48b3e60bc0df3054f28b570ef8f307
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9P593:TDqPe1Cxcxk3ZAEUadz
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3294) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-