General
-
Target
eaa30e4e1bbcc00d9041929082440579_JaffaCakes118
-
Size
3.6MB
-
Sample
240919-fqspfsscjb
-
MD5
eaa30e4e1bbcc00d9041929082440579
-
SHA1
fad0f71c7260bd1f5de6d9a4132eafc51843bcdd
-
SHA256
6d671e0b6ac29a10c47fb356ea0a9e1a84fccbce1b57fa8305bd80d8e480acb9
-
SHA512
61cf80f81d3469482e786b35b30d54169651e46e74df34e022691134673f271a7f2737df7851670227d011b2bed1890d91c950d7a10cd12198f56d2fc69b5d8c
-
SSDEEP
98304:yDqPoO1aRxcSUDk36SAEdhvxWa9Pu29AVp2HI:yDqPj1Cxcxk3ZAEUaduUc4HI
Malware Config
Targets
-
-
Target
eaa30e4e1bbcc00d9041929082440579_JaffaCakes118
-
Size
3.6MB
-
MD5
eaa30e4e1bbcc00d9041929082440579
-
SHA1
fad0f71c7260bd1f5de6d9a4132eafc51843bcdd
-
SHA256
6d671e0b6ac29a10c47fb356ea0a9e1a84fccbce1b57fa8305bd80d8e480acb9
-
SHA512
61cf80f81d3469482e786b35b30d54169651e46e74df34e022691134673f271a7f2737df7851670227d011b2bed1890d91c950d7a10cd12198f56d2fc69b5d8c
-
SSDEEP
98304:yDqPoO1aRxcSUDk36SAEdhvxWa9Pu29AVp2HI:yDqPj1Cxcxk3ZAEUaduUc4HI
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3024) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-