Overview

overview

10

Static

static

3

7f880e0dbb...cN.exe

windows7-x64

10

7f880e0dbb...cN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7f880e0dbb223e09202984067cc46434461bb5f0816c422c156a6fb2d139408cN

  • Size

    5.0MB

  • Sample

    241001-w3f47axfmd

  • MD5

    0eda907285c2f7c50aefe1bd98e60490

  • SHA1

    358d56f9ff98ce04ece183a0c32e02dc573a615b

  • SHA256

    7f880e0dbb223e09202984067cc46434461bb5f0816c422c156a6fb2d139408c

  • SHA512

    152e1296c942f8b07868cf17e15fa87b95ad977c9831aabd1b608d4d3ee71c252cb7f9b396127642f79f10e2c18be2a814b8e35911f92ea48e2f9d97481599d3

  • SSDEEP

    98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9PbyAVp2H:yDqPe1Cxcxk3ZAEUadbyc4H

Score
10/10
wannacrydiscoveryransomwareworm

Malware Config

Targets

    • Target

      7f880e0dbb223e09202984067cc46434461bb5f0816c422c156a6fb2d139408cN

    • Size

      5.0MB

    • MD5

      0eda907285c2f7c50aefe1bd98e60490

    • SHA1

      358d56f9ff98ce04ece183a0c32e02dc573a615b

    • SHA256

      7f880e0dbb223e09202984067cc46434461bb5f0816c422c156a6fb2d139408c

    • SHA512

      152e1296c942f8b07868cf17e15fa87b95ad977c9831aabd1b608d4d3ee71c252cb7f9b396127642f79f10e2c18be2a814b8e35911f92ea48e2f9d97481599d3

    • SSDEEP

      98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9PbyAVp2H:yDqPe1Cxcxk3ZAEUadbyc4H

    Score
    10/10
    wannacrydiscoveryransomwareworm

    • Wannacry

      WannaCry is a ransomware cryptoworm.

      ransomwarewormwannacry

    • Contacts a large (3254) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Executes dropped EXE

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks