I have put together a little "petri dish" test environment and started looking for a sample that has the exploit. Some samples out there simply do not have the exploit code, and even tough they will encrypt the files locally, sometimes the mounted shares too, they would not spread.
Luckily, I have found this nice blog post from McAfee Labs: https://securingtomorrow.mcafee.com/mcafee-labs/analysis-wannacry-ransomware/ with the reference to the sample SHA256: 24d004a104d4d54034dbcffc2a4b19a11f39008a575aa614ea04703480b1022c (they keep referring to samples with MD5, which is still a very-very bad practice, but the hash is MD5: DB349B97C37D22F5EA1D1841E3C89EB4)
Once I got the sample from the VxStream Sandbox site, dropped it in the test environment, and monitored it with Security Onion. I was super happy to see it spreading, despite the fact that for the first run my Windows 7 x64 VM went to BSOD as the EthernalBlue exploit failed.
But the second run was a full success, all my Windows 7 VMs got infected. Brad was so kind and made a guest blog post at one of my favorite sites, www.malware-traffic-analysis.net so you can find the pcap, description of the test environment and some screenshots here: http://malware-traffic-analysis.net/2017/05/18/index2.html
Related word
- Pentest Tools For Windows
- Pentest Tools Find Subdomains
- Pentest Tools Free
- Hacker Tools Free Download
- Top Pentest Tools
- Hacking Tools Software
- Pentest Recon Tools
- Hack Tools 2019
- Hacking Tools For Mac
- Hacker Tools Linux
- Hacking Tools Online
- Hack Tools Github
- Hacker Tool Kit
- How To Install Pentest Tools In Ubuntu
- Tools For Hacker
- Pentest Reporting Tools
- Install Pentest Tools Ubuntu
- Hacking Tools Kit
- Kik Hack Tools
- Pentest Tools Apk
- Tools Used For Hacking
- Hacks And Tools
- Hacking Tools Kit
- Pentest Tools Android
- Top Pentest Tools
- Pentest Tools Url Fuzzer
- Hacking Tools Name
- Game Hacking
- Game Hacking
- Pentest Tools
- Hack Tools Pc
- Computer Hacker
- Hacking Tools For Kali Linux
- Blackhat Hacker Tools
- Pentest Tools Free
- Underground Hacker Sites
- Hacker Tools For Ios
- Hacking Tools 2019
- Pentest Tools Website Vulnerability
- Hack Tools For Windows
- Pentest Tools Kali Linux
- Ethical Hacker Tools
- Hacker Tools Free
- Hacker Tools List
- Hack Tools Online
- Hack App
- Hacker
- Hack And Tools
- Hack Tools
- Pentest Tools For Ubuntu
- Pentest Tools
- Hacker Hardware Tools
- Android Hack Tools Github
- Underground Hacker Sites
- Hacker Search Tools
- Hacks And Tools
- Pentest Tools Website Vulnerability
- Best Pentesting Tools 2018
- Hackers Toolbox
- Hacking Tools For Windows 7
- Hacker Tools Windows
- Pentest Tools Review
- Pentest Tools Review
- Pentest Tools Alternative
- Pentest Tools Linux
- Hack Tools Download
- Hacker Security Tools
- Hacking Tools Usb
- Pentest Tools Free
- Hack Rom Tools
- Pentest Tools For Ubuntu
- Hack Tools For Mac
- Usb Pentest Tools
- Hacking Tools
- Wifi Hacker Tools For Windows
- Hack Tools For Pc
- Hacking Tools Usb
- What Is Hacking Tools
- Hacking Tools Pc
- Hacker Tools 2020
- Hacker Tools Windows
- Hacker Tools For Windows
- Pentest Tools Apk
- Hack App
- Pentest Tools Bluekeep
- Hacking Apps
- Hackers Toolbox
- Pentest Reporting Tools
- Pentest Automation Tools
- Tools 4 Hack
- Hacking Tools Hardware
- Hacker Tools Mac
- Pentest Tools Download
- Pentest Tools Kali Linux
- Pentest Tools Windows
- Blackhat Hacker Tools
- Hacker Tools List
- Pentest Tools Free
- Underground Hacker Sites
- Growth Hacker Tools
- Pentest Tools Find Subdomains
- Hacking Tools For Mac
- Hacks And Tools
- Hacking Tools For Beginners
- Hacker Tools For Mac
- Hackers Toolbox
- Pentest Tools Subdomain
- Hackrf Tools
- Hacking Tools For Pc
- Hacking Tools Mac
- Hacker Tools Free
- Hacks And Tools
- Hacker Tools For Windows
- Hacker Tools For Ios
- Hack Tools For Ubuntu
- What Are Hacking Tools
- What Are Hacking Tools
- Hacking Tools Online
- Wifi Hacker Tools For Windows
- Pentest Tools Nmap
- Growth Hacker Tools
- Beginner Hacker Tools
- Pentest Tools For Android
- Pentest Tools Nmap
- Hacking Tools Github
No comments:
Post a Comment