Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-09-27_8992d11d1e4171c938c7146d02d93378_wannacry

  • Size

    2.2MB

  • Sample

    240927-vt88yavepe

  • MD5

    8992d11d1e4171c938c7146d02d93378

  • SHA1

    374898139b9c47d7eadaa0afc58008c7c30601af

  • SHA256

    fc1532b9fda85be59bc0340cd341f18de3673b5f3cba116840875b6e8655e350

  • SHA512

    01cd675af2171826fa7a73d793ea4d0c155f59f885901409d7b37ca96e9178b65732fcb03a5ac776c14bb716edd4744ab88dd0e1642da77ccee171408712b909

  • SSDEEP

    24576:QbLguriBJMSirYbcMB0QeQjG/D8kIqRYoAdNLKz6626M+kX6SASk+RdhAdmvu:QnGMSPbcFQej/1INRx+o6SAARdhnvu

Malware Config

Targets

    • Target

      2024-09-27_8992d11d1e4171c938c7146d02d93378_wannacry

    • Size

      2.2MB

    • MD5

      8992d11d1e4171c938c7146d02d93378

    • SHA1

      374898139b9c47d7eadaa0afc58008c7c30601af

    • SHA256

      fc1532b9fda85be59bc0340cd341f18de3673b5f3cba116840875b6e8655e350

    • SHA512

      01cd675af2171826fa7a73d793ea4d0c155f59f885901409d7b37ca96e9178b65732fcb03a5ac776c14bb716edd4744ab88dd0e1642da77ccee171408712b909

    • SSDEEP

      24576:QbLguriBJMSirYbcMB0QeQjG/D8kIqRYoAdNLKz6626M+kX6SASk+RdhAdmvu:QnGMSPbcFQej/1INRx+o6SAARdhnvu

    • Wannacry

      WannaCry is a ransomware cryptoworm.

    • Contacts a large (3245) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks