I have put together a little "petri dish" test environment and started looking for a sample that has the exploit. Some samples out there simply do not have the exploit code, and even tough they will encrypt the files locally, sometimes the mounted shares too, they would not spread.
Luckily, I have found this nice blog post from McAfee Labs: https://securingtomorrow.mcafee.com/mcafee-labs/analysis-wannacry-ransomware/ with the reference to the sample SHA256: 24d004a104d4d54034dbcffc2a4b19a11f39008a575aa614ea04703480b1022c (they keep referring to samples with MD5, which is still a very-very bad practice, but the hash is MD5: DB349B97C37D22F5EA1D1841E3C89EB4)
Once I got the sample from the VxStream Sandbox site, dropped it in the test environment, and monitored it with Security Onion. I was super happy to see it spreading, despite the fact that for the first run my Windows 7 x64 VM went to BSOD as the EthernalBlue exploit failed.
But the second run was a full success, all my Windows 7 VMs got infected. Brad was so kind and made a guest blog post at one of my favorite sites, www.malware-traffic-analysis.net so you can find the pcap, description of the test environment and some screenshots here: http://malware-traffic-analysis.net/2017/05/18/index2.html
Read more
- Tools Used For Hacking
- What Are Hacking Tools
- Hacker Tools 2019
- Hacker Tools Apk Download
- Hacker Tools Apk Download
- Game Hacking
- Install Pentest Tools Ubuntu
- Easy Hack Tools
- Pentest Tools Apk
- New Hack Tools
- How To Hack
- Hacking Tools
- Hacker Tools Apk
- Hack Tools
- Hacker Tools Software
- Hacker Tools 2020
- Hacking Tools 2020
- Hack Tools Github
- Android Hack Tools Github
- Pentest Tools Port Scanner
- Hacker Tools 2020
- Pentest Tools Open Source
- New Hacker Tools
- Pentest Recon Tools
- Best Hacking Tools 2019
- Pentest Tools Online
- Hacking Tools Mac
- Pentest Tools For Ubuntu
- Physical Pentest Tools
- Hack Apps
- Pentest Tools Download
- Pentest Tools Linux
- Underground Hacker Sites
- Hacking Tools Usb
- Hacker Tools 2019
- Hacking Tools Windows 10
- Pentest Reporting Tools
- Hacker Tools Software
- Pentest Tools Free
- Hack Tool Apk
- Hacker Hardware Tools
- Hacking Tools Kit
- Pentest Tools Subdomain
- Pentest Tools Windows
- Hack Tools
- Pentest Tools Website
- Tools 4 Hack
- Hacks And Tools
- Hack Tools Pc
- Hacking Tools 2019
- Pentest Tools Website Vulnerability
- Hack Tools Online
- Pentest Tools Find Subdomains
- Hacker Tools Free Download
- Hack Tools Github
- Hacking Tools For Games
- Hacking Tools Windows
- Hacker Tools Apk
- Physical Pentest Tools
- Hacking Tools Pc
- Hacking App
- Hacker Tools For Mac
- Hack Tool Apk No Root
- Pentest Box Tools Download
- Best Pentesting Tools 2018
- Growth Hacker Tools
- Pentest Tools Free
- Pentest Tools Online
- New Hack Tools
- Hacker Tools 2019
- Hack Tools 2019
- Hacking Tools Windows 10
- Computer Hacker
- Pentest Reporting Tools
- Hack And Tools
- Hacking Tools Kit
- Hacking Tools For Mac
- How To Install Pentest Tools In Ubuntu
- How To Make Hacking Tools
- Hacking Tools Name
- Pentest Tools Online
- Ethical Hacker Tools
- Hacker Tools Windows
- Install Pentest Tools Ubuntu
- Hacking Tools Kit
- Pentest Tools Url Fuzzer
- World No 1 Hacker Software
- Hacking Tools Kit
- Underground Hacker Sites
- Hacker Tools For Pc
- Install Pentest Tools Ubuntu
- Hack And Tools
- Hacking Tools And Software
- Hack Tools
- What Is Hacking Tools
- Beginner Hacker Tools
- Hack Tools For Mac
- Hacking Tools For Windows 7
- Hacker Hardware Tools
- Hack Tools Download
- Nsa Hack Tools Download
- Pentest Tools Review
- Tools For Hacker
- Computer Hacker
- Pentest Tools Port Scanner
- Growth Hacker Tools
- Hak5 Tools
- Pentest Tools Subdomain
- Hacking Apps
- Hacking Tools Free Download
- Hacking Tools And Software
- Growth Hacker Tools
- Ethical Hacker Tools
- Hacking Tools For Windows Free Download
- Hacker Tools Hardware
- Beginner Hacker Tools
- Easy Hack Tools
- Pentest Automation Tools
Posts
No comments:
Post a Comment