General
-
Target
fff36f361482680f3255a78ba3ba0095_JaffaCakes118
-
Size
5.0MB
-
Sample
240930-exkfzssdmb
-
MD5
fff36f361482680f3255a78ba3ba0095
-
SHA1
1d943be263aa43911ef20a100f77add5d7bb320f
-
SHA256
9537f9d6f2d7a3baae2fb6f26ff449ee3c65185a1b6f9b0e4a3391ada83e0323
-
SHA512
29b9e07a197cb027ab6aafd3e978a52b79e870f90ff47f1e1e4fab5efb59e4f5786470e842e573595d3da13d08e3f97509233a40a40e12399c03c9e4998bdf7d
-
SSDEEP
98304:d8qPoBhz1aRxcSUDk36SAEdhqYoP3R8yAVp2H:d8qPe1Cxcxk3ZAE4R8yc4H
Malware Config
Targets
-
-
Target
fff36f361482680f3255a78ba3ba0095_JaffaCakes118
-
Size
5.0MB
-
MD5
fff36f361482680f3255a78ba3ba0095
-
SHA1
1d943be263aa43911ef20a100f77add5d7bb320f
-
SHA256
9537f9d6f2d7a3baae2fb6f26ff449ee3c65185a1b6f9b0e4a3391ada83e0323
-
SHA512
29b9e07a197cb027ab6aafd3e978a52b79e870f90ff47f1e1e4fab5efb59e4f5786470e842e573595d3da13d08e3f97509233a40a40e12399c03c9e4998bdf7d
-
SSDEEP
98304:d8qPoBhz1aRxcSUDk36SAEdhqYoP3R8yAVp2H:d8qPe1Cxcxk3ZAE4R8yc4H
Score10/10-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Contacts a large (3344) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-