Global WannaCry ransomware outbreak uses known NSA exploits - Emsisoft | Security Blog
Tags
Common Information
| Type | Value |
|---|---|
| UUID | c633490c-7dac-40e7-a3b9-eddd13f22dec |
| Fingerprint | a732e0f91656b65e |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | May 12, 2017, 9:10 p.m. |
| Added to db | Sept. 26, 2022, 9:31 a.m. |
| Last updated | Nov. 13, 2024, 10:15 p.m. |
| Headline | Global WannaCry ransomware outbreak uses known NSA exploits |
| Title | Global WannaCry ransomware outbreak uses known NSA exploits - Emsisoft | Security Blog |
| Detected Hints/Tags/Attributes | 99/3/19 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | http://blog.emsisoft.com/2017/05/12/wcry-ransomware-outbreak/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | torcached-microdescs.new |
|
| Details | File | 22 | taskdl.exe |
|
| Details | File | 22 | taskse.exe |
|
| Details | File | 27 | tasksche.exe |
|
| Details | File | 1 | %appdata%microsoftwindowsthemestranscodedwallpaper.jpg |
|
| Details | File | 1 | taskdatatorlibeay32.dll |
|
| Details | File | 1 | taskdatatorlibevent-2-0-5.dll |
|
| Details | File | 1 | taskdatatorlibevent_core-2-0-5.dll |
|
| Details | File | 1 | taskdatatorlibevent_extra-2-0-5.dll |
|
| Details | File | 1 | taskdatatorlibgcc_s_sjlj-1.dll |
|
| Details | File | 1 | taskdatatorlibssp-0.dll |
|
| Details | File | 1 | taskdatatorssleay32.dll |
|
| Details | File | 1 | taskdatatortaskhsvc.exe |
|
| Details | File | 1 | taskdatatortor.exe |
|
| Details | File | 1 | taskdatatorzlib1.dll |
|
| Details | Windows Registry Key | 1 | HKLMSOFTWAREWanaCrypt0r |
|
| Details | Windows Registry Key | 5 | HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun |
|
| Details | Windows Registry Key | 1 | HKLMSOFTWAREWanaCrypt0rwd |
|
| Details | Windows Registry Key | 1 | HKUS-1-5-21-677641349-3533616285-3951951702-1000Control |