I have put together a little "petri dish" test environment and started looking for a sample that has the exploit. Some samples out there simply do not have the exploit code, and even tough they will encrypt the files locally, sometimes the mounted shares too, they would not spread.
Luckily, I have found this nice blog post from McAfee Labs: https://securingtomorrow.mcafee.com/mcafee-labs/analysis-wannacry-ransomware/ with the reference to the sample SHA256: 24d004a104d4d54034dbcffc2a4b19a11f39008a575aa614ea04703480b1022c (they keep referring to samples with MD5, which is still a very-very bad practice, but the hash is MD5: DB349B97C37D22F5EA1D1841E3C89EB4)
Once I got the sample from the VxStream Sandbox site, dropped it in the test environment, and monitored it with Security Onion. I was super happy to see it spreading, despite the fact that for the first run my Windows 7 x64 VM went to BSOD as the EthernalBlue exploit failed.
But the second run was a full success, all my Windows 7 VMs got infected. Brad was so kind and made a guest blog post at one of my favorite sites, www.malware-traffic-analysis.net so you can find the pcap, description of the test environment and some screenshots here: http://malware-traffic-analysis.net/2017/05/18/index2.html
More articles
- Pentest Tools Open Source
- Hack Tools Github
- Pentest Tools Kali Linux
- Hak5 Tools
- Underground Hacker Sites
- Hacking Tools For Mac
- Hacker Tools Github
- Pentest Tools For Mac
- Hacking Tools Mac
- Pentest Tools Website
- Computer Hacker
- Pentest Tools Android
- New Hacker Tools
- Hacker Tools Windows
- Hacker Tools 2019
- Tools For Hacker
- Hacker Hardware Tools
- New Hack Tools
- Hack Tools Pc
- Hacking Tools For Beginners
- Hack Tool Apk
- Hacker Techniques Tools And Incident Handling
- Wifi Hacker Tools For Windows
- Pentest Tools Nmap
- Hacking Tools For Windows Free Download
- Pentest Tools Bluekeep
- Hacking Tools For Windows 7
- Hacking Tools 2019
- Hacker Tools Apk
- Pentest Tools Linux
- Pentest Tools Alternative
- Hacker Tools For Mac
- Hacker Tools Windows
- Pentest Tools Website Vulnerability
- Hacks And Tools
- Hacker
- Hacker Tools 2020
- Nsa Hack Tools Download
- Hacker Tools Free
- Hack Tools
- Hacking Tools Windows 10
- Pentest Tools Bluekeep
- Blackhat Hacker Tools
- Hack Tools Mac
- Best Pentesting Tools 2018
- Pentest Recon Tools
- Hack Tools
- Hackers Toolbox
- Beginner Hacker Tools
- Nsa Hacker Tools
- Black Hat Hacker Tools
- Android Hack Tools Github
- Hack Tools 2019
- Blackhat Hacker Tools
- World No 1 Hacker Software
- Best Pentesting Tools 2018
- Hacker Tools Apk Download
- How To Make Hacking Tools
- Pentest Tools Url Fuzzer
- Hack Tool Apk No Root
- Usb Pentest Tools
- Pentest Tools Subdomain
- Tools 4 Hack
- Hacking Tools Online
- Github Hacking Tools
- Pentest Tools For Android
- Nsa Hack Tools
- Hacking Tools For Windows
- Hacking Tools For Beginners
- Hackrf Tools
- Pentest Tools Open Source
- Pentest Tools Framework
- Hacking Tools Windows
- Hacking Tools Free Download
- Pentest Tools Download
- Hacking Tools Usb
- Wifi Hacker Tools For Windows
- Hacker Tools Free Download
- Hacker Tools Software
- Easy Hack Tools
- Top Pentest Tools
- What Are Hacking Tools
- Termux Hacking Tools 2019
- Hack Tools
- How To Make Hacking Tools
- Pentest Recon Tools
- New Hack Tools
- Hacker Tool Kit
- Hacking Tools Free Download
- Hack Tools For Ubuntu
- Hacking Tools Github
- Hack Tools For Games
No comments:
Post a Comment
Your suggestions and comments here!