Saw that a lot of people were looking for a pcap with WannaCry spreading Using EthernalBlue.
I have put together a little "petri dish" test environment and started looking for a sample that has the exploit. Some samples out there simply do not have the exploit code, and even tough they will encrypt the files locally, sometimes the mounted shares too, they would not spread.
Luckily, I have found this nice blog post from McAfee Labs: https://securingtomorrow.mcafee.com/mcafee-labs/analysis-wannacry-ransomware/ with the reference to the sample SHA256: 24d004a104d4d54034dbcffc2a4b19a11f39008a575aa614ea04703480b1022c (they keep referring to samples with MD5, which is still a very-very bad practice, but the hash is MD5: DB349B97C37D22F5EA1D1841E3C89EB4)
Once I got the sample from the VxStream Sandbox site, dropped it in the test environment, and monitored it with Security Onion. I was super happy to see it spreading, despite the fact that for the first run my Windows 7 x64 VM went to BSOD as the EthernalBlue exploit failed.
But the second run was a full success, all my Windows 7 VMs got infected. Brad was so kind and made a guest blog post at one of my favorite sites, www.malware-traffic-analysis.net so you can find the pcap, description of the test environment and some screenshots here: http://malware-traffic-analysis.net/2017/05/18/index2.htmlMore information
- Free Pentest Tools For Windows
- Pentest Tools Find Subdomains
- Hack Tools
- Hacking Tools 2019
- Tools For Hacker
- Hacker Tools Windows
- Hack Apps
- Hacking Tools Kit
- Hacking Apps
- Pentest Reporting Tools
- Hacking Tools And Software
- Top Pentest Tools
- Pentest Tools Open Source
- Hacking Tools 2020
- Hacking Tools Kit
- Nsa Hack Tools Download
- Nsa Hacker Tools
- Hacking Tools Usb
- Hack Tools Github
- Hack And Tools
- Hacker Tools For Pc
- Hacking Tools Name
- Nsa Hack Tools
- Hacker Tools Linux
- Pentest Tools Download
- Hacking Tools Pc
- Hacking Tools Windows 10
- Pentest Box Tools Download
- Hack Tools
- What Is Hacking Tools
- Hacker Tools
- Hacking Tools For Kali Linux
- Hacker Tool Kit
- Install Pentest Tools Ubuntu
- Android Hack Tools Github
- Pentest Tools Bluekeep
- Hacker Search Tools
- Termux Hacking Tools 2019
- Pentest Tools Windows
- Bluetooth Hacking Tools Kali
- Termux Hacking Tools 2019
- Hacking Tools Hardware
- Hacker Tools Free
- Easy Hack Tools
- Nsa Hack Tools
- How To Make Hacking Tools
- Hack Tool Apk
- Hacks And Tools
- Pentest Tools Bluekeep
- Pentest Tools Download
- Pentest Tools Website
- Pentest Tools Download
- Hacker Tools Hardware
- Nsa Hack Tools Download
- Tools Used For Hacking
- Hack Tools Pc
- Hack Tools For Ubuntu
- Hacking Tools For Mac
- How To Hack
- Pentest Tools Windows
- Pentest Tools For Ubuntu
- Pentest Tools For Windows
- Hacker Tools Free
- Hacker Tools Free
- Hacker Security Tools
- Pentest Automation Tools
- Underground Hacker Sites
- Hacking Tools Software
- Pentest Tools Subdomain
- Pentest Tools For Ubuntu
- Hacking Tools For Windows Free Download
- Install Pentest Tools Ubuntu
- Tools 4 Hack
- Hacking Tools Pc
- Pentest Tools Android
- Hack Tools 2019
- Hacker
- Growth Hacker Tools
- Best Pentesting Tools 2018
- Pentest Tools For Windows
- Pentest Tools Linux
- Hack Tools Download
- Pentest Reporting Tools
- Hacking Tools For Windows 7
- Nsa Hacker Tools
- Termux Hacking Tools 2019
- Kik Hack Tools
- Pentest Recon Tools
- Pentest Tools Port Scanner
- Pentest Tools Bluekeep
- Hack Tools Mac
- Pentest Tools Open Source
- Pentest Tools Tcp Port Scanner
- Hacker Tools Mac
- Pentest Tools Github
- Usb Pentest Tools
- Hack Tools For Games
- Physical Pentest Tools
- Hack Tools For Windows
- Hacking Tools Download
- Hacking Tools Hardware
- Hacking Tools 2019
- Pentest Tools Apk
- Hacker Tool Kit
- Hak5 Tools
- Hacker Tools For Mac
- Pentest Automation Tools
- Hacking Tools For Windows
- Easy Hack Tools
- Hack Website Online Tool
- Hacking Tools For Windows
- Pentest Tools Bluekeep
- Bluetooth Hacking Tools Kali
- Pentest Reporting Tools
- Hacking Tools Free Download
- Pentest Recon Tools
- Hacker Tools Online
- Pentest Tools For Windows
- Pentest Recon Tools
- Nsa Hacker Tools
- Hack Tools For Pc
- Pentest Box Tools Download
- Pentest Tools List
0 comments:
Post a Comment