I have put together a little "petri dish" test environment and started looking for a sample that has the exploit. Some samples out there simply do not have the exploit code, and even tough they will encrypt the files locally, sometimes the mounted shares too, they would not spread.
Luckily, I have found this nice blog post from McAfee Labs: https://securingtomorrow.mcafee.com/mcafee-labs/analysis-wannacry-ransomware/ with the reference to the sample SHA256: 24d004a104d4d54034dbcffc2a4b19a11f39008a575aa614ea04703480b1022c (they keep referring to samples with MD5, which is still a very-very bad practice, but the hash is MD5: DB349B97C37D22F5EA1D1841E3C89EB4)
Once I got the sample from the VxStream Sandbox site, dropped it in the test environment, and monitored it with Security Onion. I was super happy to see it spreading, despite the fact that for the first run my Windows 7 x64 VM went to BSOD as the EthernalBlue exploit failed.
But the second run was a full success, all my Windows 7 VMs got infected. Brad was so kind and made a guest blog post at one of my favorite sites, www.malware-traffic-analysis.net so you can find the pcap, description of the test environment and some screenshots here: http://malware-traffic-analysis.net/2017/05/18/index2.htmlRead more
- Hacker Tools Apk
- Pentest Tools Windows
- Top Pentest Tools
- Pentest Tools Github
- Pentest Tools For Ubuntu
- Tools Used For Hacking
- Pentest Tools For Windows
- Hacking Tools For Mac
- Termux Hacking Tools 2019
- Hacker Tools For Windows
- Hack Tool Apk
- Underground Hacker Sites
- Hack App
- Hacking Tools Windows 10
- Hacker Tools Linux
- Pentest Tools Tcp Port Scanner
- Termux Hacking Tools 2019
- Android Hack Tools Github
- Hacker Tools For Pc
- Pentest Tools For Mac
- Hacking Tools For Windows 7
- Hack Tools For Games
- Beginner Hacker Tools
- Kik Hack Tools
- New Hack Tools
- Hacker Tools
- Hacking Tools Free Download
- Pentest Tools Review
- Pentest Tools For Mac
- Install Pentest Tools Ubuntu
- Pentest Tools List
- Tools 4 Hack
- Hack Tool Apk No Root
- Pentest Tools Linux
- Hack Tools Download
- Free Pentest Tools For Windows
- Hacking Apps
- Hacking Tools Usb
- Beginner Hacker Tools
- Best Pentesting Tools 2018
- Hacking Tools Pc
- Wifi Hacker Tools For Windows
- Blackhat Hacker Tools
- Pentest Tools Alternative
- Pentest Tools Open Source
- Pentest Tools Bluekeep
- Hacking Tools Kit
- Pentest Tools Subdomain
- Hack Tools Github
- Game Hacking
- Hacker Tools Windows
- What Are Hacking Tools
- Hack Tools Online
- Wifi Hacker Tools For Windows
- Pentest Tools Github
- Pentest Tools For Android
- Best Hacking Tools 2020
- Hack Website Online Tool
- Hacker Tools Free Download
- Pentest Tools
- Pentest Tools Url Fuzzer
- Hacking Tools Name
- Hacker Tools Linux
- Beginner Hacker Tools
- Android Hack Tools Github
- Hacking Tools Software
- Hacker Tools Apk
- Hacker Tools For Pc
- Pentest Reporting Tools
- Pentest Tools Bluekeep
- Best Hacking Tools 2019
- Hacking Tools Github
- Hack Tools Mac
- Hacking Tools For Mac
- Pentest Tools Framework
- Tools For Hacker
- Hacker Tools Online
- Pentest Tools Linux
- Hack Tools For Ubuntu
- How To Install Pentest Tools In Ubuntu
- Hacker Tools For Ios
- Hack Tool Apk No Root
- Wifi Hacker Tools For Windows
- Hack Tool Apk No Root
- Hacking Tools Hardware
- Hack Tool Apk
- How To Hack
- Pentest Tools For Windows
- Pentest Tools Bluekeep
- Hack Apps
- Hacker Tools Github
- Hacking Tools Usb
- Hacking Tools And Software
- Pentest Tools Free
- Hacker Search Tools
- Hack Tools Pc
- Pentest Tools For Mac
- New Hack Tools
- World No 1 Hacker Software
- Pentest Tools For Ubuntu
- Pentest Tools Open Source
- Install Pentest Tools Ubuntu
Ingen kommentarer:
Legg inn en kommentar