I have put together a little "petri dish" test environment and started looking for a sample that has the exploit. Some samples out there simply do not have the exploit code, and even tough they will encrypt the files locally, sometimes the mounted shares too, they would not spread.
Luckily, I have found this nice blog post from McAfee Labs: https://securingtomorrow.mcafee.com/mcafee-labs/analysis-wannacry-ransomware/ with the reference to the sample SHA256: 24d004a104d4d54034dbcffc2a4b19a11f39008a575aa614ea04703480b1022c (they keep referring to samples with MD5, which is still a very-very bad practice, but the hash is MD5: DB349B97C37D22F5EA1D1841E3C89EB4)
Once I got the sample from the VxStream Sandbox site, dropped it in the test environment, and monitored it with Security Onion. I was super happy to see it spreading, despite the fact that for the first run my Windows 7 x64 VM went to BSOD as the EthernalBlue exploit failed.
But the second run was a full success, all my Windows 7 VMs got infected. Brad was so kind and made a guest blog post at one of my favorite sites, www.malware-traffic-analysis.net so you can find the pcap, description of the test environment and some screenshots here: http://malware-traffic-analysis.net/2017/05/18/index2.html
More information
- Hack Tools For Games
- Hacker Security Tools
- Bluetooth Hacking Tools Kali
- Hack Tools For Pc
- Usb Pentest Tools
- Pentest Tools Website
- Pentest Tools Review
- Hack Tools
- Pentest Tools Find Subdomains
- Hack Website Online Tool
- Hacker Tools 2020
- Pentest Tools Kali Linux
- Hacks And Tools
- Pentest Tools Android
- Hack And Tools
- New Hack Tools
- What Are Hacking Tools
- Hacking Tools Online
- Ethical Hacker Tools
- Pentest Tools Online
- Nsa Hacker Tools
- Hacking Tools Download
- World No 1 Hacker Software
- World No 1 Hacker Software
- Hacks And Tools
- Pentest Tools Subdomain
- Hacker
- Hacker Tools Free Download
- Hacker Tools Online
- Tools For Hacker
- Hacking Tools Windows
- Pentest Tools Url Fuzzer
- Hacker Hardware Tools
- Hacker Search Tools
- Tools 4 Hack
- Pentest Tools Framework
- New Hack Tools
- Hacking Tools For Windows Free Download
- Hacking Tools Mac
- Tools 4 Hack
- Pentest Tools Framework
- Best Hacking Tools 2019
- Pentest Tools For Ubuntu
- Hacker Tools Free Download
- Usb Pentest Tools
- Hacker Tools Online
- Bluetooth Hacking Tools Kali
- Install Pentest Tools Ubuntu
- Pentest Tools Find Subdomains
- Best Pentesting Tools 2018
- Hack Tools Github
- Blackhat Hacker Tools
- Hacking Tools For Windows 7
- Pentest Tools Linux
- Ethical Hacker Tools
- Hacking Tools Hardware
- Computer Hacker
- Hack Tools For Games
- Beginner Hacker Tools
- Github Hacking Tools
- Pentest Reporting Tools
- Hack Apps
- Hacking Tools Windows
- Tools For Hacker
- Hack Tool Apk No Root
- Pentest Tools Url Fuzzer
- Hacker
- Game Hacking
- Hack Tools For Games
- Pentest Reporting Tools
- Hack Tools For Pc
- Pentest Tools For Ubuntu
- Nsa Hack Tools
- Hacker Hardware Tools
- Game Hacking
- Hacker Tools For Windows
- Pentest Tools Website Vulnerability
- Hacking Tools Windows 10
- Pentest Tools For Ubuntu
- Hack Tool Apk
- Pentest Tools
- Easy Hack Tools
- Hacking Tools 2020
- Hacker Tools List
- Hacker Tools Free Download
- Usb Pentest Tools
- Hacking Tools Hardware
- Hacking Tools For Windows Free Download
- Hacker Tools For Mac
- Blackhat Hacker Tools
- Hacker Tools For Pc
- What Is Hacking Tools
- Hacker Tools Free
- Beginner Hacker Tools
- Hacker Tools Github
- Tools For Hacker
- Hacker Tools 2019
- New Hacker Tools
- Pentest Tools Nmap
- Hack Tools For Windows
No comments:
Post a Comment