Overview

overview

10

Static

static

3

2025-03-26...ry.exe

windows7-x64

10

2025-03-26...ry.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-03-26_8049a6eeb0f42b2f0ee0ff7809e5be12_wannacry

  • Size

    5.0MB

  • Sample

    250326-z85aratsay

  • MD5

    8049a6eeb0f42b2f0ee0ff7809e5be12

  • SHA1

    d88f48d10585de43fe92f79c633ab46a909d00c2

  • SHA256

    9a21155c65de816eb2c58c53f5ec91c2026107560d7fbd382d14a73fde7ec2c2

  • SHA512

    1798fb90dafd1db57c94c8c11298840d865062c0d53f4254897b67e6a69d4433b82a92d66ec995cecea484ac60c229b3d79cf5ae70d2b0834e8237bd1ea24aa8

  • SSDEEP

    49152:VnjQqMSPbcBVQej/1INRx+TSqTdX1HkQ9H:Z8qPoBhz1aRxcSUDk

Score
10/10
wannacrydiscoveryransomwareworm

Malware Config

Targets

    • Target

      2025-03-26_8049a6eeb0f42b2f0ee0ff7809e5be12_wannacry

    • Size

      5.0MB

    • MD5

      8049a6eeb0f42b2f0ee0ff7809e5be12

    • SHA1

      d88f48d10585de43fe92f79c633ab46a909d00c2

    • SHA256

      9a21155c65de816eb2c58c53f5ec91c2026107560d7fbd382d14a73fde7ec2c2

    • SHA512

      1798fb90dafd1db57c94c8c11298840d865062c0d53f4254897b67e6a69d4433b82a92d66ec995cecea484ac60c229b3d79cf5ae70d2b0834e8237bd1ea24aa8

    • SSDEEP

      49152:VnjQqMSPbcBVQej/1INRx+TSqTdX1HkQ9H:Z8qPoBhz1aRxcSUDk

    Score
    10/10
    wannacrydiscoveryransomwareworm

    • Wannacry

      WannaCry is a ransomware cryptoworm.

      ransomwarewormwannacry

    • Wannacry family

      wannacry

    • Contacts a large (3256) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Executes dropped EXE

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks