I have put together a little "petri dish" test environment and started looking for a sample that has the exploit. Some samples out there simply do not have the exploit code, and even tough they will encrypt the files locally, sometimes the mounted shares too, they would not spread.
Luckily, I have found this nice blog post from McAfee Labs: https://securingtomorrow.mcafee.com/mcafee-labs/analysis-wannacry-ransomware/ with the reference to the sample SHA256: 24d004a104d4d54034dbcffc2a4b19a11f39008a575aa614ea04703480b1022c (they keep referring to samples with MD5, which is still a very-very bad practice, but the hash is MD5: DB349B97C37D22F5EA1D1841E3C89EB4)
Once I got the sample from the VxStream Sandbox site, dropped it in the test environment, and monitored it with Security Onion. I was super happy to see it spreading, despite the fact that for the first run my Windows 7 x64 VM went to BSOD as the EthernalBlue exploit failed.
But the second run was a full success, all my Windows 7 VMs got infected. Brad was so kind and made a guest blog post at one of my favorite sites, www.malware-traffic-analysis.net so you can find the pcap, description of the test environment and some screenshots here: http://malware-traffic-analysis.net/2017/05/18/index2.htmlRead more
- Game Hacking
- Pentest Tools Framework
- Bluetooth Hacking Tools Kali
- Black Hat Hacker Tools
- Black Hat Hacker Tools
- Pentest Tools Github
- Hacking Tools Kit
- Pentest Tools Website Vulnerability
- Hacking Tools Windows 10
- Pentest Tools Framework
- Top Pentest Tools
- Pentest Tools Tcp Port Scanner
- Hacking Tools For Mac
- Hacking Tools Free Download
- Kik Hack Tools
- Tools Used For Hacking
- Pentest Tools For Windows
- Pentest Tools For Android
- Hackrf Tools
- Hacker Tools Github
- Hacking Apps
- Free Pentest Tools For Windows
- Hack Tools
- Pentest Tools For Windows
- New Hacker Tools
- Hacker Tools 2020
- Hack Tools For Pc
- Pentest Tools Apk
- Pentest Tools Free
- Pentest Tools Website
- Hacking Tools For Windows 7
- Usb Pentest Tools
- Pentest Tools Website
- Underground Hacker Sites
- How To Make Hacking Tools
- Hacker Search Tools
- What Is Hacking Tools
- Growth Hacker Tools
- What Are Hacking Tools
- Hack Tools For Windows
- Easy Hack Tools
- Hack Tools Online
- Ethical Hacker Tools
- Hacker Tools For Ios
- Pentest Tools Port Scanner
- Easy Hack Tools
- Hacking Tools For Beginners
- Pentest Tools Linux
- Best Pentesting Tools 2018
- Hacker Tools Mac
- Pentest Tools Free
- Hacking Tools 2019
- Top Pentest Tools
- How To Install Pentest Tools In Ubuntu
- How To Hack
- Hacking App
- Bluetooth Hacking Tools Kali
- Pentest Tools Bluekeep
- Pentest Tools Nmap
- Hacker Tools For Mac
- Hacking Tools Download
- Pentest Tools Download
- Hacking Tools For Windows Free Download
- Hacker Tools Software
- Hack Tools For Pc
- Hacking App
- Hack Tools Pc
- Hacker Search Tools
- Hacking Tools
- Hacker Security Tools
- World No 1 Hacker Software
- Hack App
- Hacking Apps
- Hack Tools For Games
- Hacking Tools For Kali Linux
- Pentest Tools Tcp Port Scanner
- Hacking Tools For Pc
- Hacker Tools Hardware
- Pentest Tools Port Scanner
- Hack Tools For Mac
- Hacking Tools Kit
- Pentest Tools Website
- Beginner Hacker Tools
- Hacker Tools For Pc
- Hacker Tools Hardware
- Hacker Tools For Windows
- Hackers Toolbox
- Termux Hacking Tools 2019
- How To Make Hacking Tools
- Hacker Security Tools
- Hacking Tools Kit
- Pentest Tools For Android
- Pentest Automation Tools
- Hacker
- Hacking Tools Hardware
- Hack Tool Apk
- Hacking Tools Pc
- Hacking Tools For Windows
- Pentest Tools For Ubuntu
- Pentest Tools Find Subdomains
- Underground Hacker Sites
- Hacker Tools Mac
- Hack Rom Tools
- Github Hacking Tools
- New Hack Tools
- What Are Hacking Tools
- Hacking Apps
- Hacker Search Tools
- Hack Tools For Mac
- Hack Apps
- Game Hacking
- Underground Hacker Sites
- Hak5 Tools
No comments:
Post a Comment