ioc[.]one - OSINT Cyber Threat Intelligence Database

Critical Update: WannaCry Ransomware

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Models Dns - T1071.004 Dns - T1590.002 Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Connection Proxy - T1090

Show in Graph

Common Information

Type	Value
UUID	f166acdb-0b48-436e-a334-c209900523f1
Fingerprint	8c043f59a5f70e82
Analysis status	DONE
Considered CTI value	2
Text language
Published	May 15, 2017, midnight
Added to db	Jan. 18, 2023, 11:19 p.m.
Last updated	Nov. 15, 2024, 6:44 a.m.
Headline	Critical Update: WannaCry Ransomware
Title	Critical Update: WannaCry Ransomware
Detected Hints/Tags/Attributes	45/2/49

Source URLs

	Redirection	Url
Details	Source	https://www.fortinet.com/blog/threat-research/wannacry-ransomware.html

URL Provider

Details	Provider	Source level domain
Details	fortinet.com	www.fortinet.com

Attributes

Details	Type	#Events	Value
Details	CVE	126	cve-2017-0144
Details	Domain	17	www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com
Details	Domain	5	generic.ac
Details	File	41	code.exe
Details	sha256	4	0a73291ab5607aef7db23863cf8e72f55bcb3c273bb47f00edf011515aeb5894
Details	sha256	8	2ca2d550e603d74dedda03156023135b38da3630cb014e3d00b1263358c5f00d
Details	sha256	8	4a468603fdcb7a2eb5770705898cf9ef37aade532a7964642ecd705a74794b79
Details	sha256	11	b9c5d4339809e0ad9a00d4d3dd26fdf44a32819a54abf846bb9b560d81391c25
Details	sha256	13	ed01ebfbc9eb5bbea545af4d01bf5f1071661840480439c6e5babe8e080e41aa
Details	sha256	2	f7c7b5e4b051ea5bd0017803f40af13bed224c4b0fd60b890b6784df5bd63494
Details	sha256	2	593bbcc8f34047da9960b8456094c0eaf69caaf16f1626b813484207df8bd8af
Details	sha256	3	5ad4efd90dcde01d26cc6f32f7ce3ce0b4d4951d4b94a19aa097341aff2acaec
Details	sha256	2	5d26835be2cf4f08f2beeff301c06d05035d0a9ec3afacc71dff22813595c0b9
Details	sha256	2	6bf1839a7e72a92a2bb18fbedf1873e4892b00ea4b122e48ae80fac5048db1a7
Details	sha256	1	7108d6793a003695ee8107401cfb17af305fa82ff6c16b7a5db45f15e5c9e12d
Details	sha256	2	76a3666ce9119295104bb69ee7af3f2845d23f40ba48ace7987f79b06312bbdf
Details	sha256	3	78e3f87f31688355c0f398317b2d87d803bd87ee3656c5a7c80f0561ec8606df
Details	sha256	2	7c465ea7bcccf4f94147add808f24629644be11c0ba4823f16e8c19e0090f0ff
Details	sha256	1	7e369022da51937781b3efe6c57f824f05cf43cbd66b4a24367a19488d2939e4
Details	sha256	3	9b60c622546dc45cca64df935b71c26dcf4886d6fa811944dbc4e23db9335640
Details	sha256	2	9cc32c94ce7dc6e48f86704625b6cdc0fda0d2cd7ad769e4d0bb1776903e5a13
Details	sha256	4	9fb39f162c1e1eb55fbf38e670d5e329d84542d3dfcdc341a99f5d07c4b50977
Details	sha256	3	a3900daf137c81ca37a4bf10e9857526d3978be085be265393f98cb075795740
Details	sha256	1	aee20f9188a5c3954623583c6b0e6623ec90d5cd3fdec4e1001646e27664002c
Details	sha256	2	b3c39aeb14425f137b5bd0fd7654f1d6a45c0e8518ef7e209ad63d8dc6d0bac7
Details	sha256	4	b47e281bfbeeb0758f8c625bed5c5a0d27ee8e0065ceeadd76b0010d226206f0
Details	sha256	4	b66db13d17ae8bcaf586180e3dcd1e2e0a084b6bc987ac829bbff18c3be7f8b4
Details	sha256	4	be22645c61949ad6a077373a7d6cd85e3fae44315632f161adc4c99d5a8e6844
Details	sha256	7	c365ddaa345cfcaff3d629505572a484cff5221933d68e4a52130b8bb7badaf9
Details	sha256	2	ca29de1dc8817868c93e54b09f557fe14e40083c0955294df5bd91f52ba469c8
Details	sha256	3	d8a9879a99ac7b12e63e6bcae7f965fbf1b63d892a8649ab1d6b08ce711f7127
Details	sha256	3	dff26a9a44baa3ce109b8df41ae0a301d9e4a28ad7bd7721bbb7ccd137bfd696
Details	sha256	2	e14f1a655d54254d06d51cd23a2fa57b6ffdf371cf6b828ee483b1b1d6d21079
Details	sha256	2	e8450dd6f908b23c9cbd6011fe3d940b24c0420a208d6924e2d920f92c894a96
Details	sha256	4	eeb9cd6a1c4b3949b2ff3134a77d6736b35977f951b9c7c911483b5caeb1c1fb
Details	IPv4	3	188.166.23.127
Details	IPv4	18	193.23.244.244
Details	IPv4	4	2.3.69.209
Details	IPv4	4	146.0.32.144
Details	IPv4	4	50.7.161.218
Details	IPv4	1	217.79.179.77
Details	IPv4	14	128.31.0.39
Details	IPv4	4	213.61.66.116
Details	IPv4	4	212.47.232.237
Details	IPv4	4	81.30.158.223
Details	IPv4	6	79.172.193.32
Details	IPv4	2	89.45.235.21
Details	IPv4	3	38.229.72.16
Details	IPv4	2	188.138.33.220