Overview

overview

10

Static

static

3

2025-01-25...ry.exe

windows7-x64

10

2025-01-25...ry.exe

windows10-2004-x64

10

2025-01-25...ry.exe

windows10-ltsc 2021-x64

10

2025-01-25...ry.exe

windows11-21h2-x64

10

Resubmissions

28-01-2025 02:32

250128-c1nlpstrbw 10

25-01-2025 23:18

250125-3ase3stmgw 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-01-25_cafff9fcf64d3db867bf6c0bb6917e5e_wannacry

  • Size

    5.0MB

  • Sample

    250128-c1nlpstrbw

  • MD5

    cafff9fcf64d3db867bf6c0bb6917e5e

  • SHA1

    327e9782b0bf99fa6060f3a971c97c1a7c41dece

  • SHA256

    6aaf7f2665f77ae5b9ab560abcab5fdeb95bbfabba1922daa9509547dec78931

  • SHA512

    46f5fbcd316eae7129f6650887eb6d38866f7616b6ecc96b4ba379a83ef75b8bda60cf74ebf0a7ee431d021d9ab9303e5c71e0f915d62c5bb828031c1e8c42b3

  • SSDEEP

    49152:XnAQqMSPbcBVQej/1Wx+TSqTdXHVKzT6SAARdh:XDqPoBhz1WxcSUjKzT6SAEdh

Score
10/10
wannacrydiscoveryransomwareworm

Malware Config

Targets

    • Target

      2025-01-25_cafff9fcf64d3db867bf6c0bb6917e5e_wannacry

    • Size

      5.0MB

    • MD5

      cafff9fcf64d3db867bf6c0bb6917e5e

    • SHA1

      327e9782b0bf99fa6060f3a971c97c1a7c41dece

    • SHA256

      6aaf7f2665f77ae5b9ab560abcab5fdeb95bbfabba1922daa9509547dec78931

    • SHA512

      46f5fbcd316eae7129f6650887eb6d38866f7616b6ecc96b4ba379a83ef75b8bda60cf74ebf0a7ee431d021d9ab9303e5c71e0f915d62c5bb828031c1e8c42b3

    • SSDEEP

      49152:XnAQqMSPbcBVQej/1Wx+TSqTdXHVKzT6SAARdh:XDqPoBhz1WxcSUjKzT6SAEdh

    Score
    10/10
    wannacrydiscoveryransomwareworm

    • Wannacry

      WannaCry is a ransomware cryptoworm.

      ransomwarewormwannacry

    • Wannacry family

      wannacry

    • Contacts a large (763) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Executes dropped EXE

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks