I have put together a little "petri dish" test environment and started looking for a sample that has the exploit. Some samples out there simply do not have the exploit code, and even tough they will encrypt the files locally, sometimes the mounted shares too, they would not spread.
Luckily, I have found this nice blog post from McAfee Labs: https://securingtomorrow.mcafee.com/mcafee-labs/analysis-wannacry-ransomware/ with the reference to the sample SHA256: 24d004a104d4d54034dbcffc2a4b19a11f39008a575aa614ea04703480b1022c (they keep referring to samples with MD5, which is still a very-very bad practice, but the hash is MD5: DB349B97C37D22F5EA1D1841E3C89EB4)
Once I got the sample from the VxStream Sandbox site, dropped it in the test environment, and monitored it with Security Onion. I was super happy to see it spreading, despite the fact that for the first run my Windows 7 x64 VM went to BSOD as the EthernalBlue exploit failed.
But the second run was a full success, all my Windows 7 VMs got infected. Brad was so kind and made a guest blog post at one of my favorite sites, www.malware-traffic-analysis.net so you can find the pcap, description of the test environment and some screenshots here: http://malware-traffic-analysis.net/2017/05/18/index2.html
Read more
- Hack Tool Apk No Root
- Pentest Tools List
- Hack Tools Github
- Hack Tools For Mac
- Hack Tools For Pc
- Hacking Tools Software
- Hacking Tools 2020
- Hack Tools
- Pentest Automation Tools
- Hacking Tools 2020
- Wifi Hacker Tools For Windows
- Pentest Tools Open Source
- Hack Tools
- Pentest Tools Windows
- Pentest Tools Linux
- Pentest Tools
- Install Pentest Tools Ubuntu
- Pentest Tools Kali Linux
- Hacking Tools For Pc
- Pentest Tools For Ubuntu
- Hacker Tools Free
- Pentest Tools Port Scanner
- Hacking Tools Hardware
- Bluetooth Hacking Tools Kali
- Pentest Tools Online
- Pentest Automation Tools
- What Is Hacking Tools
- Pentest Tools Port Scanner
- Hacker Tools Github
- Hacker Search Tools
- Pentest Tools Android
- Hacking Tools Kit
- Hack Tools For Mac
- Hacking Tools Github
- Install Pentest Tools Ubuntu
- Hacking Tools And Software
- Hacker Tools 2019
- Pentest Tools Download
- Hacking Apps
- Pentest Tools For Android
- Hack And Tools
- Easy Hack Tools
- Hacking Tools Mac
- Usb Pentest Tools
- Hacking Tools For Windows Free Download
- Hack Tools For Windows
- Termux Hacking Tools 2019
- Hacking Tools For Windows 7
- Pentest Tools
- Physical Pentest Tools
- Hacker Tools For Mac
- Hacker Tools Windows
- Nsa Hacker Tools
- Pentest Tools Url Fuzzer
- Hack Tools For Mac
- Pentest Tools Github
- Hack Tools For Mac
- Tools Used For Hacking
- Hacking Tools For Windows
- Hacking Tools And Software
- Hacking Tools Windows 10
- Hacker Tools Linux
- Pentest Tools Website Vulnerability
- Pentest Recon Tools
- Hacker Tools Windows
- Hackrf Tools
- Hacking Tools Github
- Hack Tools Pc
- Pentest Tools For Android
- Pentest Tools Website Vulnerability
- Pentest Tools Android
- Hack Tools Download
- How To Install Pentest Tools In Ubuntu
- Pentest Tools For Windows
- Best Hacking Tools 2019
- Hacking Apps
- Hacker Tools For Ios
- New Hack Tools
- New Hack Tools
- Pentest Tools List
- Hacking Tools Github
- Pentest Tools Android
- Hacker Tools For Ios
- Hack Tool Apk
- Pentest Tools For Mac
Nenhum comentário:
Postar um comentário