General
-
Target
2024-12-22_10d329c7d1536466de3837a7befc56f4_wannacry
-
Size
5.0MB
-
Sample
241222-p9zfsazkej
-
MD5
10d329c7d1536466de3837a7befc56f4
-
SHA1
5710107cf1607ac64f8bc9c1827218d501881acc
-
SHA256
59e2da755d7e8bb68fe6461b01b5acd48feac07081bb8a68d8d55af15b3adb53
-
SHA512
700bbdfe57e3429deb19d4b1bff92f855ac100ba533fee579589a23ac89319b582cd0437f2f0a56d8531e7c34669f04a7d3d41322daf971e5a26c1252a2fa81c
-
SSDEEP
24576:bbLgdeQhfdmMSirYbcMNgef0QeQjG/Drt/8uME7A4IgxZ4RS/3DtD:bnjQqMSPbcBVQej/f3R8s3
Static task
static1
Behavioral task
behavioral1
Sample
2024-12-22_10d329c7d1536466de3837a7befc56f4_wannacry.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2024-12-22_10d329c7d1536466de3837a7befc56f4_wannacry.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
2024-12-22_10d329c7d1536466de3837a7befc56f4_wannacry
-
Size
5.0MB
-
MD5
10d329c7d1536466de3837a7befc56f4
-
SHA1
5710107cf1607ac64f8bc9c1827218d501881acc
-
SHA256
59e2da755d7e8bb68fe6461b01b5acd48feac07081bb8a68d8d55af15b3adb53
-
SHA512
700bbdfe57e3429deb19d4b1bff92f855ac100ba533fee579589a23ac89319b582cd0437f2f0a56d8531e7c34669f04a7d3d41322daf971e5a26c1252a2fa81c
-
SSDEEP
24576:bbLgdeQhfdmMSirYbcMNgef0QeQjG/Drt/8uME7A4IgxZ4RS/3DtD:bnjQqMSPbcBVQej/f3R8s3
Score10/10-
Wannacry family
-
Contacts a large (3118) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Modifies file permissions
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
File and Directory Permissions Modification: Windows File and Directory Permissions Modification
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Defense Evasion
File and Directory Permissions Modification
2Windows File and Directory Permissions Modification
1Hide Artifacts
1Hidden Files and Directories
1