https://github.com/byt3n33dl3/wannacry2.0
๐ฐ๐ช WannaCry ๐ฅ๐ฎ๐ป๐๐ผ๐บ๐๐ฎ๐ฟ๐ฒ. This malware spread by using a vulnerability Exploit Called "EternalBlue".
Science Score: 13.0%
This score indicates how likely this project is to be science-related based on various indicators:
-
โCITATION.cff file
-
โcodemeta.json file
Found codemeta.json file -
โ.zenodo.json file
-
โDOI references
-
โAcademic publication links
-
โAcademic email domains
-
โInstitutional organization owner
-
โJOSS paper metadata
-
โScientific vocabulary similarity
Low similarity (6.4%) to scientific vocabulary
Keywords
Repository
๐ฐ๐ช WannaCry ๐ฅ๐ฎ๐ป๐๐ผ๐บ๐๐ฎ๐ฟ๐ฒ. This malware spread by using a vulnerability Exploit Called "EternalBlue".
Basic Info
- Host: GitHub
- Owner: byt3n33dl3
- License: mit
- Language: C
- Default Branch: main
- Homepage: https://bit.ly/WannaCrySheet
- Size: 5.2 MB
Statistics
- Stars: 58
- Watchers: 1
- Forks: 17
- Open Issues: 0
- Releases: 0
Topics
Metadata Files
README.md
WannaCry3.0
Improvement of 'WannaCry' Virus project
WannaCry Infections
- NHS (uk) turning away patients, unable to perform x-rays.
- Nissan (uk)
- Telefonica (spain)
- Power firm Iberdrola and Gas Natural (spain)
- FedEx (us)
- University of Waterloo (ontario canada)
- Russia interior ministry & Megafon (russia)
- VTB (russian bank)
- Russian Railroads (RZD)
- Portugal Telecom
- ะกะฑะตัะฑะฐะฝะบ - Sberbank Russia (russia)
- Shaheen Airlines (pakistan)
- Train station in frankfurt (germany)
- Neustadt station (germany)
- The entire network of German Rail seems to be affected
- In China secondary schools and universities had been affected (china)
- A Library in Oman (UAE)
- China Yanshui County Public Security Bureau (china)
- Renault (france)
- Schools/Education (france)
- University of Milano-Bicocca (italy)
- A mall in singapore (singapore)
- ATMs in china (china)
- Norwegian soccer team ticket sales (norway)
- STC telecom (saudia arabia)
- All ATMs in india closed (india)
- Hitachi, The conglomerate reported problems in email and other systems (japan)
- Academic institutions and offices (taiwan)
- Speed cameras reportedly, traffic and speed cameras (australia)
- Movie theaters systems used for display and ticketing were affected (korea)
- Universities in several higher education institutions (italy)
- Social Security systems of the social security administration (brazil)
- Government and private sectors (mexico)
- Widespread Concern (indonesia)
- Harapan Kita & Dharmais Hospital, no service access to medical records. (indonesia)
- Government of Communication and Information Technology (indonesia)
- and more------------------------------โฌ๏ธ
๐ Global Infection Map


Language C
File types
There are a number of files and folders wannacrypt will avoid. Some because it's entirely pointless and others because it might destabilize the system. During scans, it will search the path for the following strings and skip over if present:
- "Content.IE5"
- "Temporary Internet Files"
- " This folder protects against ransomware. Modifying it will reduce protection"
- "\Local Settings\Temp"
- "\AppData\Local\Temp"
- "\Program Files (x86)"
- "\Program Files (x64)"
- "\Program Files"
- "\WINDOWS"
- "\ProgramData"
- "\Intel"
- "$\"
The filetypes it looks for to encrypt are:
.doc, .docx, .xls, .xlsx, .ppt, .pptx, .pst, .ost, .msg, .eml, .vsd, .vsdx, .txt, .csv, .rtf, .123, .wks, .wk1, .pdf, .dwg, .onetoc2, .snt, .jpeg, .jpg, .docb, .docm, .dot, .dotm, .dotx, .xlsm, .xlsb, .xlw, .xlt, .xlm, .xlc, .xltx, .xltm, .pptm, .pot, .pps, .ppsm, .ppsx, .ppam, .potx, .potm, .edb, .hwp, .602, .sxi, .sti, .sldx, .sldm, .sldm, .vdi, .vmdk, .vmx, .gpg, .aes, .ARC, .PAQ, .bz2, .tbk, .bak, .tar, .tgz, .gz, .7z, .rar, .zip, .backup, .iso, .vcd, .bmp, .png, .gif, .raw, .cgm, .tif, .tiff, .nef, .psd, .ai, .svg, .djvu, .m4u, .m3u, .mid, .wma, .flv, .3g2, .mkv, .3gp, .mp4, .mov, .avi, .asf, .mpeg, .vob, .mpg, .wmv, .fla, .swf, .wav, .mp3, .sh, .class, .jar, .java, .rb, .asp, .php, .jsp, .brd, .sch, .dch, .dip, .pl, .vb, .vbs, .ps1, .bat, .cmd, .js, .asm, .h, .pas, .cpp, .c, .cs, .suo, .sln, .ldf, .mdf, .ibd, .myi, .myd, .frm, .odb, .dbf, .db, .mdb, .accdb, .sql, .sqlitedb, .sqlite3, .asc, .lay6, .lay, .mml, .sxm, .otg, .odg, .uop, .std, .sxd, .otp, .odp, .wb2, .slk, .dif, .stc, .sxc, .ots, .ods, .3dm, .max, .3ds, .uot, .stw, .sxw, .ott, .odt, .pem, .p12, .csr, .crt, .key, .pfx, .der
credit herulume and others, thanks for extracting and else from the binary.
Note: I will not take any responsibility to any attack or actions that use this malwareโ.
Owner
- Name: Sulaiman
- Login: byt3n33dl3
- Kind: user
- Location: Error 403: Not on earth
- Website: https://byt3n33dl3.substack.com/
- Twitter: byt3n33dl3
- Repositories: 91
- Profile: https://github.com/byt3n33dl3
I N F R A X 8 6
GitHub Events
Total
- Watch event: 17
- Fork event: 5
- Commit comment event: 2
Last Year
- Watch event: 17
- Fork event: 5
- Commit comment event: 2
Issues and Pull Requests
Last synced: about 1 year ago
All Time
- Total issues: 0
- Total pull requests: 0
- Average time to close issues: N/A
- Average time to close pull requests: N/A
- Total issue authors: 0
- Total pull request authors: 0
- Average comments per issue: 0
- Average comments per pull request: 0
- Merged pull requests: 0
- Bot issues: 0
- Bot pull requests: 0
Past Year
- Issues: 0
- Pull requests: 0
- Average time to close issues: N/A
- Average time to close pull requests: N/A
- Issue authors: 0
- Pull request authors: 0
- Average comments per issue: 0
- Average comments per pull request: 0
- Merged pull requests: 0
- Bot issues: 0
- Bot pull requests: 0