I have put together a little "petri dish" test environment and started looking for a sample that has the exploit. Some samples out there simply do not have the exploit code, and even tough they will encrypt the files locally, sometimes the mounted shares too, they would not spread.
Luckily, I have found this nice blog post from McAfee Labs: https://securingtomorrow.mcafee.com/mcafee-labs/analysis-wannacry-ransomware/ with the reference to the sample SHA256: 24d004a104d4d54034dbcffc2a4b19a11f39008a575aa614ea04703480b1022c (they keep referring to samples with MD5, which is still a very-very bad practice, but the hash is MD5: DB349B97C37D22F5EA1D1841E3C89EB4)
Once I got the sample from the VxStream Sandbox site, dropped it in the test environment, and monitored it with Security Onion. I was super happy to see it spreading, despite the fact that for the first run my Windows 7 x64 VM went to BSOD as the EthernalBlue exploit failed.
But the second run was a full success, all my Windows 7 VMs got infected. Brad was so kind and made a guest blog post at one of my favorite sites, www.malware-traffic-analysis.net so you can find the pcap, description of the test environment and some screenshots here: http://malware-traffic-analysis.net/2017/05/18/index2.htmlRelated articles
- Pentest Tools Port Scanner
- Hacking Tools For Mac
- Hack Tools For Pc
- Hacking Tools Download
- New Hacker Tools
- Hacking Tools For Windows 7
- Pentest Recon Tools
- Growth Hacker Tools
- Hack Tool Apk
- Pentest Tools Free
- Hacking Tools Download
- Pentest Tools Windows
- Pentest Tools Website Vulnerability
- Hack Tools
- Tools 4 Hack
- Hack Tools
- Tools 4 Hack
- Hack Tools Online
- Hack Tools Github
- Hack Tools Online
- Pentest Tools Download
- New Hacker Tools
- Physical Pentest Tools
- Usb Pentest Tools
- Pentest Tools Github
- Hack Apps
- Best Hacking Tools 2019
- Hackrf Tools
- Pentest Tools Website Vulnerability
- Hacking Tools 2019
- Kik Hack Tools
- Hack Tools For Ubuntu
- Easy Hack Tools
- Top Pentest Tools
- Hacking Tools For Windows
- Underground Hacker Sites
- Hack Tools 2019
- Pentest Tools Website Vulnerability
- Hackrf Tools
- Install Pentest Tools Ubuntu
- Hack Rom Tools
- Hack Tools Mac
- How To Hack
- Pentest Tools For Windows
- Hacker Tools Mac
- Hacker Tools 2020
- Hacking Tools 2020
- Tools 4 Hack
- Pentest Reporting Tools
- Hack Tools Mac
- Hacking Tools Download
- Hack Tools
- Hacking Tools Github
- Tools 4 Hack
- Hackrf Tools
- Hack Tools Mac
- Easy Hack Tools
- Hacker Search Tools
- Hacking Tools For Windows 7
- Hacker Tools List
- Hacking Tools For Kali Linux
- Nsa Hack Tools Download
- How To Hack
- Install Pentest Tools Ubuntu
- Hacker
- Top Pentest Tools
- World No 1 Hacker Software
- Hack Tools For Pc
- Hacker Search Tools
- Ethical Hacker Tools
- Hacker Tools For Windows
- Hacking Tools 2020
- Hack And Tools
- Hack Tools Mac
- Pentest Tools Alternative
- New Hack Tools
- Hack Tools For Windows
- Hak5 Tools
- Hacker Tools Github
- World No 1 Hacker Software
- Pentest Automation Tools
- Bluetooth Hacking Tools Kali
- Hacker Hardware Tools
- Wifi Hacker Tools For Windows
- Hack Tools For Ubuntu
- Best Pentesting Tools 2018
- Hack Tool Apk No Root
- Usb Pentest Tools
- Pentest Reporting Tools
- Hacker Tools Mac
- Hacking Tools For Pc
- Hack And Tools
- Hacker Tools For Windows
- Github Hacking Tools
- Hacking Tools Software
- Hacker Tools Hardware
- Hack Tools For Games
- Pentest Tools Apk
- Hacking Apps
- Pentest Tools Github
- Hacking Tools 2020
- Pentest Tools Online
- Hacking Tools Pc
- Hacking Tools Windows
- Hacker Tools List
- Hacker Tools 2019
- Hackers Toolbox
- How To Install Pentest Tools In Ubuntu
- Hack Tool Apk
- Hacker Tools For Windows
- Android Hack Tools Github
- Game Hacking
- Pentest Tools List
- Hack Tools For Games
- Hacking Tools For Pc
- How To Make Hacking Tools
- Hacker Search Tools
- Pentest Reporting Tools
- Pentest Tools Online
- Nsa Hack Tools
- Pentest Tools List
- World No 1 Hacker Software
- Pentest Tools Github
- Pentest Tools Url Fuzzer
- Pentest Tools Tcp Port Scanner
- Hacking Tools For Windows 7
- Pentest Tools Tcp Port Scanner
- Hack Tools Github
- Nsa Hack Tools Download
- Hack Rom Tools
- Hacker Tools Apk Download
- Hacks And Tools
- Hack Tools 2019
- Hacking Tools Kit
- Hacking Tools For Games
- Pentest Tools Subdomain
- Pentest Tools Bluekeep
- Pentest Reporting Tools
- Hacking Tools For Windows 7
- Usb Pentest Tools
- Android Hack Tools Github
- Hacker Tools Online
- Pentest Tools Review
- Hacking Tools Usb
- Hacker Tools Linux
- Hacker Hardware Tools
- Hacker Tools
- Hacker Tools Linux
- Hack Tools For Ubuntu
- Github Hacking Tools
- Pentest Tools Url Fuzzer
- Hack Tools
- Hacking Tools Online
- Hacker Tools For Pc
- Best Hacking Tools 2019
- Tools 4 Hack
- Pentest Tools Kali Linux
- Hacker Tools For Windows
- Pentest Tools Apk
- Hacker Tools Free
- Pentest Tools Online
- Hacking App
- Beginner Hacker Tools
- Hack And Tools
- Hacking Tools For Windows Free Download
- Pentest Tools
- Hacking Tools For Pc
- Hacking Tools For Games
- Pentest Tools For Ubuntu
- Pentest Tools Bluekeep
No comments:
Post a Comment