I have put together a little "petri dish" test environment and started looking for a sample that has the exploit. Some samples out there simply do not have the exploit code, and even tough they will encrypt the files locally, sometimes the mounted shares too, they would not spread.
Luckily, I have found this nice blog post from McAfee Labs: https://securingtomorrow.mcafee.com/mcafee-labs/analysis-wannacry-ransomware/ with the reference to the sample SHA256: 24d004a104d4d54034dbcffc2a4b19a11f39008a575aa614ea04703480b1022c (they keep referring to samples with MD5, which is still a very-very bad practice, but the hash is MD5: DB349B97C37D22F5EA1D1841E3C89EB4)
Once I got the sample from the VxStream Sandbox site, dropped it in the test environment, and monitored it with Security Onion. I was super happy to see it spreading, despite the fact that for the first run my Windows 7 x64 VM went to BSOD as the EthernalBlue exploit failed.
But the second run was a full success, all my Windows 7 VMs got infected. Brad was so kind and made a guest blog post at one of my favorite sites, www.malware-traffic-analysis.net so you can find the pcap, description of the test environment and some screenshots here: http://malware-traffic-analysis.net/2017/05/18/index2.html
Related word
- Hak5 Tools
- How To Make Hacking Tools
- Hack Tools For Ubuntu
- Hacker Tool Kit
- Hack Tools
- Hacker Tools Windows
- Growth Hacker Tools
- Hacking Tools
- Hack App
- Pentest Tools Subdomain
- Hacking App
- Hack Tools For Ubuntu
- Hacker
- Hacker Tools For Windows
- Pentest Tools Nmap
- Nsa Hack Tools Download
- Hack And Tools
- Hacker Tools For Ios
- Hacking Tools Windows 10
- Hack Tool Apk No Root
- Pentest Reporting Tools
- Hack Apps
- How To Make Hacking Tools
- Hacker Tools Hardware
- Bluetooth Hacking Tools Kali
- Hacking Tools For Windows
- Hack Website Online Tool
- New Hack Tools
- Hack Website Online Tool
- Nsa Hacker Tools
- Best Hacking Tools 2019
- Hack Tools
- Hack And Tools
- Hacker Tools Software
- Hack Tools Pc
- Hacker Tools 2020
- Pentest Tools Website Vulnerability
- Pentest Tools Online
- Hacking Tools Software
- Pentest Tools
- Pentest Tools For Android
- Hacker Tools 2020
- Hacker Hardware Tools
- Hacker Tools
- Hack Tool Apk
- What Are Hacking Tools
- Pentest Tools Apk
- Pentest Tools Android
- Nsa Hack Tools
- Hacker Tools Free
- Pentest Tools Open Source
- Hack Rom Tools
- Hackers Toolbox
- Hack Tools 2019
- Ethical Hacker Tools
- Kik Hack Tools
- Free Pentest Tools For Windows
- Nsa Hack Tools Download
- Hacker Tools For Mac
- Hacker Tools List
- Hacker Tools Github
- Hack Tools 2019
- Hacker Tools Free Download
- Hacker Tools For Windows
- Hack Tools 2019
- Hacking Tools Pc
- Pentest Tools Website
- Hack Tool Apk
- Pentest Automation Tools
No comments:
Post a Comment