wannacry

Resubmissions

15-01-2025 12:09

250115-pbg4vaskhs 10

15-01-2025 12:05

250115-n9j6estndq 10

15-01-2025 10:51

250115-mx374a1jft 10

Sharing

Copy URL

Twitter E-mail

General

Target

2025-01-15_075ca33b35164058d848ac1cb410dc42_wannacry
Size

5.0MB
Sample

250115-mx374a1jft
MD5

075ca33b35164058d848ac1cb410dc42
SHA1

5e37df9dd0fe22c3623453476d4a13f0b96826e0
SHA256

a201e56c992edf1fd30417991b95127f99888c6d27747899f65504e6893ddd1d
SHA512

f22cb008f65544cb00947ce6f7995aeba073473da25b3584b0217bc32c18a44807a05246ab4fff58a5d86e01be49e01efbe27045decc681f051edbe1e609d545
SSDEEP

98304:XDaiEkmnfZ1aRxcSUDk36SAEdhX0Aj4Ouenmur2uuh:XDa6mnfZ1Cxcxk3ZAE70AjKem/uuh

Score

10^/10

Malware Config

Targets

- Target
  
  2025-01-15_075ca33b35164058d848ac1cb410dc42_wannacry
- Size
  
  5.0MB
- MD5
  
  075ca33b35164058d848ac1cb410dc42
- SHA1
  
  5e37df9dd0fe22c3623453476d4a13f0b96826e0
- SHA256
  
  a201e56c992edf1fd30417991b95127f99888c6d27747899f65504e6893ddd1d
- SHA512
  
  f22cb008f65544cb00947ce6f7995aeba073473da25b3584b0217bc32c18a44807a05246ab4fff58a5d86e01be49e01efbe27045decc681f051edbe1e609d545
- SSDEEP
  
  98304:XDaiEkmnfZ1aRxcSUDk36SAEdhX0Aj4Ouenmur2uuh:XDa6mnfZ1Cxcxk3ZAE70AjKem/uuh
Score

10^/10

wannacry discovery ransomware worm
- Wannacry
  WannaCry is a ransomware cryptoworm.
  ransomware worm wannacry
- Wannacry family
  wannacry
- Contacts a large (3324) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Executes dropped EXE
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

T1046

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Wannacry family

Contacts a large (3324) amount of remote hosts

Executes dropped EXE

Creates a large amount of network flows

Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2