Overview

overview

10

Static

static

3

2024-12-18...ry.exe

windows7-x64

10

2024-12-18...ry.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-18_e71fa580b99c50c4e1f59312313c5e03_wannacry

  • Size

    5.0MB

  • Sample

    241218-qmmn5szqgw

  • MD5

    e71fa580b99c50c4e1f59312313c5e03

  • SHA1

    34e2f4086eaf068a9474fb098d9f4baece670969

  • SHA256

    47bceae28935000f36b5a8f21d930d31c58c5177a6e43bd2bd9f607ed17ba728

  • SHA512

    08d2b1aa33ecc67a6e5f2c155c53977e12fdd406bb4486e4a66cd6f85488bfb8334aac953f2a61501df88d1174fdafbb946efb4f50c7ac8b1e5d9105b2888643

  • SSDEEP

    49152:QnsQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnv:Q/qPoBhz1aRxcSUDk36SAEdhv

Score
10/10
wannacrydiscoveryransomwareworm

Malware Config

Targets

    • Target

      2024-12-18_e71fa580b99c50c4e1f59312313c5e03_wannacry

    • Size

      5.0MB

    • MD5

      e71fa580b99c50c4e1f59312313c5e03

    • SHA1

      34e2f4086eaf068a9474fb098d9f4baece670969

    • SHA256

      47bceae28935000f36b5a8f21d930d31c58c5177a6e43bd2bd9f607ed17ba728

    • SHA512

      08d2b1aa33ecc67a6e5f2c155c53977e12fdd406bb4486e4a66cd6f85488bfb8334aac953f2a61501df88d1174fdafbb946efb4f50c7ac8b1e5d9105b2888643

    • SSDEEP

      49152:QnsQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnv:Q/qPoBhz1aRxcSUDk36SAEdhv

    Score
    10/10
    wannacrydiscoveryransomwareworm

    • Wannacry

      WannaCry is a ransomware cryptoworm.

      ransomwarewormwannacry

    • Wannacry family

      wannacry

    • Contacts a large (3263) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks