General

  • Target

    2024-10-12_124493d378cfc040c6c830e58e152ada_wannacry

  • Size

    2.2MB

  • Sample

    241012-eaa9sswbqm

  • MD5

    124493d378cfc040c6c830e58e152ada

  • SHA1

    b6bcf2a16a9f41ab7a3b8dede980e26a3d11022e

  • SHA256

    b67cd977ec7b5ddd1f25811b921ffdd52f288bf4eb0b1e17bc7faaa5876b80aa

  • SHA512

    aa09a3b304bdd11e46496fbb241bdb68e63bde9033271df040b99a68fa758ef759910c79de75a50c5cb6f134546f5231af5617938ddf3c22cfd0e7f4a80e4303

  • SSDEEP

    12288:eQbLgmluyQhMbaIMu7L5NVErCA4z2g6rTcbckPU82900Ve7zw+K+D178/51m9crF:VbLguVQhfdmMSirYbcMNgef0w7v9O

Malware Config

Targets

    • Target

      2024-10-12_124493d378cfc040c6c830e58e152ada_wannacry

    • Size

      2.2MB

    • MD5

      124493d378cfc040c6c830e58e152ada

    • SHA1

      b6bcf2a16a9f41ab7a3b8dede980e26a3d11022e

    • SHA256

      b67cd977ec7b5ddd1f25811b921ffdd52f288bf4eb0b1e17bc7faaa5876b80aa

    • SHA512

      aa09a3b304bdd11e46496fbb241bdb68e63bde9033271df040b99a68fa758ef759910c79de75a50c5cb6f134546f5231af5617938ddf3c22cfd0e7f4a80e4303

    • SSDEEP

      12288:eQbLgmluyQhMbaIMu7L5NVErCA4z2g6rTcbckPU82900Ve7zw+K+D178/51m9crF:VbLguVQhfdmMSirYbcMNgef0w7v9O

    • Wannacry

      WannaCry is a ransomware cryptoworm.

    • Contacts a large (3188) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks