I have put together a little "petri dish" test environment and started looking for a sample that has the exploit. Some samples out there simply do not have the exploit code, and even tough they will encrypt the files locally, sometimes the mounted shares too, they would not spread.
Luckily, I have found this nice blog post from McAfee Labs: https://securingtomorrow.mcafee.com/mcafee-labs/analysis-wannacry-ransomware/ with the reference to the sample SHA256: 24d004a104d4d54034dbcffc2a4b19a11f39008a575aa614ea04703480b1022c (they keep referring to samples with MD5, which is still a very-very bad practice, but the hash is MD5: DB349B97C37D22F5EA1D1841E3C89EB4)
Once I got the sample from the VxStream Sandbox site, dropped it in the test environment, and monitored it with Security Onion. I was super happy to see it spreading, despite the fact that for the first run my Windows 7 x64 VM went to BSOD as the EthernalBlue exploit failed.
But the second run was a full success, all my Windows 7 VMs got infected. Brad was so kind and made a guest blog post at one of my favorite sites, www.malware-traffic-analysis.net so you can find the pcap, description of the test environment and some screenshots here: http://malware-traffic-analysis.net/2017/05/18/index2.html
Related word
- Hacking Tools Hardware
- Pentest Box Tools Download
- Termux Hacking Tools 2019
- Pentest Tools Linux
- Pentest Tools Review
- Pentest Tools Nmap
- Kik Hack Tools
- Tools For Hacker
- Pentest Tools For Android
- Best Hacking Tools 2019
- How To Hack
- Hack Tools
- Hacking Tools For Windows 7
- Tools Used For Hacking
- Pentest Tools Bluekeep
- Hacking Tools For Windows
- Hacker Hardware Tools
- Kik Hack Tools
- Install Pentest Tools Ubuntu
- Hack App
- Hacker
- Easy Hack Tools
- Pentest Tools Framework
- Hacker Tools Mac
- Physical Pentest Tools
- What Are Hacking Tools
- Pentest Tools Review
- Best Pentesting Tools 2018
- Pentest Tools Url Fuzzer
- Black Hat Hacker Tools
- Pentest Tools Alternative
- Physical Pentest Tools
- Hacking Tools Pc
- Hacker Tools 2020
- Hacking Tools For Windows
- Nsa Hack Tools
- Hack Tools Online
- Hack Tools
- Pentest Tools Find Subdomains
- Hack App
- Hacking Tools Free Download
- Computer Hacker
- Tools For Hacker
- Hacker Tools
- Hack Website Online Tool
- Bluetooth Hacking Tools Kali
- Hacker Tools Mac
- Hacker Tools
- Pentest Tools Bluekeep
- Hacker Tools For Pc
- Growth Hacker Tools
- Hack Tools For Games
- Beginner Hacker Tools
- Hacking App
- Pentest Automation Tools
- Pentest Tools Tcp Port Scanner
- Hacking Tools For Kali Linux
- Pentest Tools Port Scanner
- Hacker Tools Software
- Hacking Tools Pc
- Hacker Techniques Tools And Incident Handling
- Hack Rom Tools
- Best Hacking Tools 2020
- Hack Tool Apk
- Hacker Tools Linux
- Game Hacking
- Hacking Tools For Windows
- Hack Tools
- Hack App
- Top Pentest Tools
- Hacker Tools
- Pentest Tools Github
- Hack Tool Apk
- Hacker Tools Apk Download
- Tools Used For Hacking
- Kik Hack Tools
- Pentest Tools Website Vulnerability
- Free Pentest Tools For Windows
- Hacking App
- Bluetooth Hacking Tools Kali
- Hacker Tools Linux
- Hacking App
- Bluetooth Hacking Tools Kali
- Hacker Tools
- Best Hacking Tools 2019
- Hacking Tools Windows 10
- Pentest Tools Subdomain
- Pentest Tools Free
- Hacking Tools For Kali Linux
- Hacking Tools Pc
- Hacking Tools Pc
- Pentest Tools Download
- Black Hat Hacker Tools
- How To Install Pentest Tools In Ubuntu
- Pentest Tools Find Subdomains
- How To Hack
- Hack Apps
- Hacker Tools For Pc
- Install Pentest Tools Ubuntu
- Hacking Tools Mac
- Android Hack Tools Github
- Hacker
- Pentest Recon Tools
- Pentest Tools
- Hacker Tools Free
- Hacker Tools Online
- Hacker Tools For Windows
- Pentest Tools Open Source
- Underground Hacker Sites
- Pentest Tools Review
- Pentest Tools Tcp Port Scanner
- Easy Hack Tools
- Hack Tools Mac
- Pentest Tools Nmap
- Physical Pentest Tools
- Hacker Tools For Ios
沒有留言:
張貼留言