WannaCry2
WannaCry WannaCrypt 2017 North Korea Lazarus. EternalBlue MS17-010. Kill switch iuqerfsodp9. 150 countries 230K system. NHS FedEx.
Threat Profile
Type
Ransomware
Programming LanguageC
C2 ProtocolTCP/SMB
First Seen2017
Targets
Küresel
Purpose / Capabilities
- Ransomware+Worm
C2 Servers 1
| Address | Port | Protocol | Status | Action |
|---|---|---|---|---|
iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com
|
80 | HTTP | SINKHOLED |
⚠ C2 addresses are shared solely for threat intelligence and defensive purposes. Unauthorized access to these addresses constitutes a criminal offense.
Research Reports (1)
WannaCry -- iuqerfsodp9...com Kill Switch Domain, MsWinZonesCacheCounterMutexA, 2 BTC | Kritik
WannaCry 743KB. iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com kill switch. Global\MsWinZonesCacheCounterMutexA mutex. 115p7UMM BTC.
Read Report →