General

  • Target

    2024-10-12_af9ca0c28097f501f3c3028f451637c0_wannacry

  • Size

    3.6MB

  • Sample

    241012-fkf4gayfnk

  • MD5

    af9ca0c28097f501f3c3028f451637c0

  • SHA1

    34170a51915630e494f52c28a0093f910a6779c2

  • SHA256

    4bebb73aa972683e3c5cef607ecc7f9594412af89e9826e1c2bee29e4131a15f

  • SHA512

    79dac3f2332757ebfb04225122ae25e8a8d25f52afa5ebcaae59946e773ecbc888a4274072071d5b4781ded1aded6ee19b9dbfdee1a4b875807e34e9f5b4ad6f

  • SSDEEP

    98304:yDqPoBhz1aRxcSUDk36SAPxWa9P593CJf:yDqPe1Cxcxk3ZA4adzC1

Malware Config

Targets

    • Target

      2024-10-12_af9ca0c28097f501f3c3028f451637c0_wannacry

    • Size

      3.6MB

    • MD5

      af9ca0c28097f501f3c3028f451637c0

    • SHA1

      34170a51915630e494f52c28a0093f910a6779c2

    • SHA256

      4bebb73aa972683e3c5cef607ecc7f9594412af89e9826e1c2bee29e4131a15f

    • SHA512

      79dac3f2332757ebfb04225122ae25e8a8d25f52afa5ebcaae59946e773ecbc888a4274072071d5b4781ded1aded6ee19b9dbfdee1a4b875807e34e9f5b4ad6f

    • SSDEEP

      98304:yDqPoBhz1aRxcSUDk36SAPxWa9P593CJf:yDqPe1Cxcxk3ZA4adzC1

    • Wannacry

      WannaCry is a ransomware cryptoworm.

    • Contacts a large (3216) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Executes dropped EXE

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.