General
-
Target
eb08ff16021264b1f8c41c89eee6bb78_JaffaCakes118
-
Size
5.0MB
-
Sample
240919-ldz6nasarq
-
MD5
eb08ff16021264b1f8c41c89eee6bb78
-
SHA1
11f24fe58456ecb5323bbb4bda5e89e26bdea97e
-
SHA256
f93847ed23c62e63f543e7be36431978e336314d70108daf22ebe797bcac70eb
-
SHA512
abc5d09c52b4f7dabd5adad85254d97c01b532d75c1e3ebff2177e36a6f3662250d2513e5a2c2b8acca40554a2bcbc6bc1cda51a47ab3f70b1e8ad44f652219b
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9:+DqPoBhz1aRxcSUDk36SAEdhvxWa9
Malware Config
Targets
-
-
Target
eb08ff16021264b1f8c41c89eee6bb78_JaffaCakes118
-
Size
5.0MB
-
MD5
eb08ff16021264b1f8c41c89eee6bb78
-
SHA1
11f24fe58456ecb5323bbb4bda5e89e26bdea97e
-
SHA256
f93847ed23c62e63f543e7be36431978e336314d70108daf22ebe797bcac70eb
-
SHA512
abc5d09c52b4f7dabd5adad85254d97c01b532d75c1e3ebff2177e36a6f3662250d2513e5a2c2b8acca40554a2bcbc6bc1cda51a47ab3f70b1e8ad44f652219b
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9:+DqPoBhz1aRxcSUDk36SAEdhvxWa9
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3264) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-