WannaCry2

WannaCry WannaCrypt 2017 North Korea Lazarus. EternalBlue MS17-010. Kill switch iuqerfsodp9. 150 countries 230K system. NHS FedEx.

Threat Profile
Type Ransomware
Programming LanguageC
C2 ProtocolTCP/SMB
First Seen2017
Targets Küresel
Purpose / Capabilities
  • Ransomware+Worm

C2 Servers 1

Address Port Protocol Status Action
iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com
80 HTTP SINKHOLED

⚠ C2 addresses are shared solely for threat intelligence and defensive purposes. Unauthorized access to these addresses constitutes a criminal offense.

Research Reports (1)

Critical

WannaCry -- iuqerfsodp9...com Kill Switch Domain, MsWinZonesCacheCounterMutexA, 2 BTC | Kritik

WannaCry 743KB. iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com kill switch. Global\MsWinZonesCacheCounterMutexA mutex. 115p7UMM BTC.

Read Report →