wannacry | 8d2b87612d651acbd9cf59421008dee390dbdc345afa9e4fb16146dd41553964 | Triage

Resubmissions

10-10-2024 22:52

241010-2tf1qa1clf 10

10-10-2024 22:43

241010-2ndneawbqm 10

10-10-2024 21:48

241010-1n5w8aybkh 10

Sharing

General

Target

2024-10-10_16fcccc66c19270b5ec9528ab1ec048f_wannacry
Size

3.6MB
Sample

241010-1n5w8aybkh
MD5

16fcccc66c19270b5ec9528ab1ec048f
SHA1

6c24f963073c0f455d0bc6f1ee78e51494562db6
SHA256

8d2b87612d651acbd9cf59421008dee390dbdc345afa9e4fb16146dd41553964
SHA512

6c86657587777637c1ebd4795201da80d30cfbcda4a6b0854a973236fc569612a3e8331d962e40649ad5fa4ecc012e736d04f524e5cc7bd603c1f87911f71210
SSDEEP

98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9P5Y2HI:yDqPe1Cxcxk3ZAEUadxHI

Score

10^/10

wannacry discovery ransomware worm

Malware Config

Targets

- Target
  
  2024-10-10_16fcccc66c19270b5ec9528ab1ec048f_wannacry
- Size
  
  3.6MB
- MD5
  
  16fcccc66c19270b5ec9528ab1ec048f
- SHA1
  
  6c24f963073c0f455d0bc6f1ee78e51494562db6
- SHA256
  
  8d2b87612d651acbd9cf59421008dee390dbdc345afa9e4fb16146dd41553964
- SHA512
  
  6c86657587777637c1ebd4795201da80d30cfbcda4a6b0854a973236fc569612a3e8331d962e40649ad5fa4ecc012e736d04f524e5cc7bd603c1f87911f71210
- SSDEEP
  
  98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9P5Y2HI:yDqPe1Cxcxk3ZAEUadxHI
Score

10^/10

wannacry discovery ransomware worm
- Wannacry
  WannaCry is a ransomware cryptoworm.
  ransomware worm wannacry
- Contacts a large (3274) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Executes dropped EXE
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

wannacrydiscoveryransomwareworm

behavioral2

wannacrydiscoveryransomwareworm