Overview

overview

10

Static

static

3

2024-12-12...ry.exe

windows7-x64

10

2024-12-12...ry.exe

windows10-2004-x64

10

Resubmissions

12-12-2024 17:27

241212-v1e9fatjgl 10

12-12-2024 00:28

241212-asebystpas 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-12_7bb44ce91d465a2a5295f9168e0b6970_wannacry

  • Size

    3.6MB

  • Sample

    241212-asebystpas

  • MD5

    7bb44ce91d465a2a5295f9168e0b6970

  • SHA1

    50678187f149f1e46a738a166c0026ac05bc4a0a

  • SHA256

    a5ffdb6d6251b69c518c7e4fa71feeb9b2efadec74d1f4c578890536eec1124d

  • SHA512

    71c071a8cf2398c4a1fc34fa9c447b893dfe59465f15d392e3724a58bf8bb835aede6e72431e024bb610daa70a819aa65b8107f4301757ed9b75a89d1e972557

  • SSDEEP

    49152:2nAQqMSPbcBVJNRx+TSqTdX1HkQo6SAARdhnvxJM0H9:yDqPoBJRxcSUDk36SAEdhvxWa9

Score
10/10
wannacrydiscoveryransomwareworm

Malware Config

Targets

    • Target

      2024-12-12_7bb44ce91d465a2a5295f9168e0b6970_wannacry

    • Size

      3.6MB

    • MD5

      7bb44ce91d465a2a5295f9168e0b6970

    • SHA1

      50678187f149f1e46a738a166c0026ac05bc4a0a

    • SHA256

      a5ffdb6d6251b69c518c7e4fa71feeb9b2efadec74d1f4c578890536eec1124d

    • SHA512

      71c071a8cf2398c4a1fc34fa9c447b893dfe59465f15d392e3724a58bf8bb835aede6e72431e024bb610daa70a819aa65b8107f4301757ed9b75a89d1e972557

    • SSDEEP

      49152:2nAQqMSPbcBVJNRx+TSqTdX1HkQo6SAARdhnvxJM0H9:yDqPoBJRxcSUDk36SAEdhvxWa9

    Score
    10/10
    wannacrydiscoveryransomwareworm

    • Wannacry

      WannaCry is a ransomware cryptoworm.

      ransomwarewormwannacry

    • Wannacry family

      wannacry

    • Contacts a large (3298) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Executes dropped EXE

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks