General

  • Target

    2024-11-23_e8c9308b82fa62506dd4761fcf0fb124_wannacry

  • Size

    5.0MB

  • Sample

    241123-qf5w5svqas

  • MD5

    e8c9308b82fa62506dd4761fcf0fb124

  • SHA1

    b28266f957537b314af74c48af18964c3ca78cf4

  • SHA256

    3d3dc33370a160bdfac9a78b53b270bccbb867d71553ee5a1372b5ebfe46acc0

  • SHA512

    3fce1943217da4d1f6aef4ba2f9bbd9b61454a8f4a8c0a20c921253de779eca0950b6e236374f93e0afae91a9069a24518a655a4a3b7c1bbcd2c11932de04b99

  • SSDEEP

    24576:XbLgddQhfdmMSirYbcMNgef0QeQjG/D8kIqRYoAdNLKz6626M+vbOSSqT:XnAQqMSPbcBVQej/1INRx+TSqT

Malware Config

Targets

    • Target

      2024-11-23_e8c9308b82fa62506dd4761fcf0fb124_wannacry

    • Size

      5.0MB

    • MD5

      e8c9308b82fa62506dd4761fcf0fb124

    • SHA1

      b28266f957537b314af74c48af18964c3ca78cf4

    • SHA256

      3d3dc33370a160bdfac9a78b53b270bccbb867d71553ee5a1372b5ebfe46acc0

    • SHA512

      3fce1943217da4d1f6aef4ba2f9bbd9b61454a8f4a8c0a20c921253de779eca0950b6e236374f93e0afae91a9069a24518a655a4a3b7c1bbcd2c11932de04b99

    • SSDEEP

      24576:XbLgddQhfdmMSirYbcMNgef0QeQjG/D8kIqRYoAdNLKz6626M+vbOSSqT:XnAQqMSPbcBVQej/1INRx+TSqT

    • Wannacry

      WannaCry is a ransomware cryptoworm.

    • Wannacry family

    • Contacts a large (3245) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Executes dropped EXE

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks