Overview

overview

10

Static

static

3

f628c13673...18.dll

windows7-x64

10

f628c13673...18.dll

windows10-2004-x64

10

Resubmissions

25-09-2024 15:38

240925-s3j93awgmg 10

25-09-2024 13:57

240925-q877zayfjn 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f628c136739115e54ac5d385627b9869_JaffaCakes118

  • Size

    5.0MB

  • Sample

    240925-s3j93awgmg

  • MD5

    f628c136739115e54ac5d385627b9869

  • SHA1

    51e5a1122bf3e6585b8a90feca752bb83b4ad198

  • SHA256

    0b10cf5deb1a32890775e64ed3e744741f2f61e183710c2424dea87c2d76ee4d

  • SHA512

    16b2e97288aacdabadaa7e4fa599037c69f8c44ce19ad40aa6f230d733bee1f5afd0d62c5d607e780b0faa96be23ffeb2fe0cb5af82d623bc666fbd1269733d1

  • SSDEEP

    12288:yvbLgPlu+QhMbaIMu7L5NVErCA4z2g6rTcbckPU82900Ve7zw+K+DHeQYSUjEXFG:SbLgddQhfdmMSirYbcMNgef0QeQjG

Score
10/10
wannacrydiscoveryransomwareworm

Malware Config

Targets

    • Target

      f628c136739115e54ac5d385627b9869_JaffaCakes118

    • Size

      5.0MB

    • MD5

      f628c136739115e54ac5d385627b9869

    • SHA1

      51e5a1122bf3e6585b8a90feca752bb83b4ad198

    • SHA256

      0b10cf5deb1a32890775e64ed3e744741f2f61e183710c2424dea87c2d76ee4d

    • SHA512

      16b2e97288aacdabadaa7e4fa599037c69f8c44ce19ad40aa6f230d733bee1f5afd0d62c5d607e780b0faa96be23ffeb2fe0cb5af82d623bc666fbd1269733d1

    • SSDEEP

      12288:yvbLgPlu+QhMbaIMu7L5NVErCA4z2g6rTcbckPU82900Ve7zw+K+DHeQYSUjEXFG:SbLgddQhfdmMSirYbcMNgef0QeQjG

    Score
    10/10
    wannacrydiscoveryransomwareworm

    • Wannacry

      WannaCry is a ransomware cryptoworm.

      ransomwarewormwannacry

    • Contacts a large (1636) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Executes dropped EXE

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks