General
-
Target
d60eb1b1cce833e5ef6dda81ca74a9c6_JaffaCakes118
-
Size
3.6MB
-
Sample
240909-lm3cdatgnc
-
MD5
d60eb1b1cce833e5ef6dda81ca74a9c6
-
SHA1
465f21405a5a4086160c8a945a24adb7d8175c8f
-
SHA256
5f0eb9ab500665e6f7251aea5ec2fbeff7f74d9a3bdef34245e63a53599e5cc8
-
SHA512
7c6a61846be7c5bf8ae24c4e869af746596b5e9414032a5e7ad1a0d4c04ca892bb4d100ab4eb9bbfe763515e5b81c700aa9d6b4f4bacbd988bb956ebdd9353aa
-
SSDEEP
98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8iI:yDqPe1Cxcxk3ZAEUadzR8iI
Malware Config
Targets
-
-
Target
d60eb1b1cce833e5ef6dda81ca74a9c6_JaffaCakes118
-
Size
3.6MB
-
MD5
d60eb1b1cce833e5ef6dda81ca74a9c6
-
SHA1
465f21405a5a4086160c8a945a24adb7d8175c8f
-
SHA256
5f0eb9ab500665e6f7251aea5ec2fbeff7f74d9a3bdef34245e63a53599e5cc8
-
SHA512
7c6a61846be7c5bf8ae24c4e869af746596b5e9414032a5e7ad1a0d4c04ca892bb4d100ab4eb9bbfe763515e5b81c700aa9d6b4f4bacbd988bb956ebdd9353aa
-
SSDEEP
98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8iI:yDqPe1Cxcxk3ZAEUadzR8iI
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3263) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-