wannacry | c5eeafb62d5b0fce524e12ad5a94f7e221636dc1bfc8622c8d7e0e61bc0950f8 | Triage

Submit
Reports

Overview

overview

Static

static

3

775930a062...62.dll

windows7-x64

775930a062...62.dll

windows10-2004-x64

Sharing

General

Target

775930a062cfe16caf9a56513d142262.dll
Size

5.0MB
Sample

250115-rz96msvqf1
MD5

775930a062cfe16caf9a56513d142262
SHA1

ebc7f59387f5b121795b3c3bc37bc77c566baf7b
SHA256

c5eeafb62d5b0fce524e12ad5a94f7e221636dc1bfc8622c8d7e0e61bc0950f8
SHA512

7b5a61545b21ea5f477d86df7af8d53951011f3b062db09a5defb053716bb2bb619c53b5111ddcadba5047029fb41da2cdf3d95ab49466ed33428f372fe98f48
SSDEEP

49152:RnnMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhHE:1nPoBhz1aRxcSUDk36SAEdhk

Score

10^/10

wannacry discovery ransomware worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

775930a062cfe16caf9a56513d142262.dll

Resource

win7-20240729-en

wannacry discovery ransomware worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

775930a062cfe16caf9a56513d142262.dll

Resource

win10v2004-20241007-en

wannacry discovery ransomware worm

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  775930a062cfe16caf9a56513d142262.dll
- Size
  
  5.0MB
- MD5
  
  775930a062cfe16caf9a56513d142262
- SHA1
  
  ebc7f59387f5b121795b3c3bc37bc77c566baf7b
- SHA256
  
  c5eeafb62d5b0fce524e12ad5a94f7e221636dc1bfc8622c8d7e0e61bc0950f8
- SHA512
  
  7b5a61545b21ea5f477d86df7af8d53951011f3b062db09a5defb053716bb2bb619c53b5111ddcadba5047029fb41da2cdf3d95ab49466ed33428f372fe98f48
- SSDEEP
  
  49152:RnnMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhHE:1nPoBhz1aRxcSUDk36SAEdhk
Score

10^/10

wannacry discovery ransomware worm
- Wannacry
  WannaCry is a ransomware cryptoworm.
  ransomware worm wannacry
- Wannacry family
  wannacry
- Contacts a large (3313) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Executes dropped EXE
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

wannacrydiscoveryransomwareworm

behavioral2

wannacrydiscoveryransomwareworm

© 2018-2025

Terms | Privacy