https://github.com/byt3n33dl3/wannacry2.0

๐“†ฐ๐“†ช WannaCry ๐—ฅ๐—ฎ๐—ป๐˜€๐—ผ๐—บ๐˜„๐—ฎ๐—ฟ๐—ฒ. This malware spread by using a vulnerability Exploit Called "EternalBlue".

https://github.com/byt3n33dl3/wannacry2.0

Science Score: 13.0%

This score indicates how likely this project is to be science-related based on various indicators:

  • โ—‹
    CITATION.cff file
  • โœ“
    codemeta.json file
    Found codemeta.json file
  • โ—‹
    .zenodo.json file
  • โ—‹
    DOI references
  • โ—‹
    Academic publication links
  • โ—‹
    Academic email domains
  • โ—‹
    Institutional organization owner
  • โ—‹
    JOSS paper metadata
  • โ—‹
    Scientific vocabulary similarity
    Low similarity (6.4%) to scientific vocabulary

Keywords

ransomware wannacry
Last synced: 10 months ago · JSON representation

Repository

๐“†ฐ๐“†ช WannaCry ๐—ฅ๐—ฎ๐—ป๐˜€๐—ผ๐—บ๐˜„๐—ฎ๐—ฟ๐—ฒ. This malware spread by using a vulnerability Exploit Called "EternalBlue".

Basic Info
Statistics
  • Stars: 58
  • Watchers: 1
  • Forks: 17
  • Open Issues: 0
  • Releases: 0
Topics
ransomware wannacry
Created about 2 years ago · Last pushed about 2 years ago
Metadata Files
Readme License

README.md

WannaCry3.0

Improvement of 'WannaCry' Virus project

WannaCry Infections

  • NHS (uk) turning away patients, unable to perform x-rays.
  • Nissan (uk)
  • Telefonica (spain)
  • Power firm Iberdrola and Gas Natural (spain)
  • FedEx (us)
  • University of Waterloo (ontario canada)
  • Russia interior ministry & Megafon (russia)
  • VTB (russian bank)
  • Russian Railroads (RZD)
  • Portugal Telecom
  • ะกะฑะตั€ะฑะฐะฝะบ - Sberbank Russia (russia)
  • Shaheen Airlines (pakistan)
  • Train station in frankfurt (germany)
  • Neustadt station (germany)
  • The entire network of German Rail seems to be affected
  • In China secondary schools and universities had been affected (china)
  • A Library in Oman (UAE)
  • China Yanshui County Public Security Bureau (china)
  • Renault (france)
  • Schools/Education (france)
  • University of Milano-Bicocca (italy)
  • A mall in singapore (singapore)
  • ATMs in china (china)
  • Norwegian soccer team ticket sales (norway)
  • STC telecom (saudia arabia)
  • All ATMs in india closed (india)
  • Hitachi, The conglomerate reported problems in email and other systems (japan)
  • Academic institutions and offices (taiwan)
  • Speed cameras reportedly, traffic and speed cameras (australia)
  • Movie theaters systems used for display and ticketing were affected (korea)
  • Universities in several higher education institutions (italy)
  • Social Security systems of the social security administration (brazil)
  • Government and private sectors (mexico)
  • Widespread Concern (indonesia)
  • Harapan Kita & Dharmais Hospital, no service access to medical records. (indonesia)
  • Government of Communication and Information Technology (indonesia)
  • and more------------------------------โฌ‡๏ธ

๐ŸŒ Global Infection Map

![wannacry1](https://github.com/Sulaimannabdul/WannaCry3.0/assets/151133481/cf3ee53c-57f7-4d94-8650-240726bbeef3)
![wannacry2](https://github.com/Sulaimannabdul/WannaCry3.0/assets/151133481/014c7c2e-cd6a-41ca-b338-c5f3e9fa7ac4)
![wannacry3](https://github.com/Sulaimannabdul/WannaCry3.0/assets/151133481/0beb39b9-dba5-4021-a725-2dd6fa232d46)

Language C

File types

There are a number of files and folders wannacrypt will avoid. Some because it's entirely pointless and others because it might destabilize the system. During scans, it will search the path for the following strings and skip over if present:

  • "Content.IE5"
  • "Temporary Internet Files"
  • " This folder protects against ransomware. Modifying it will reduce protection"
  • "\Local Settings\Temp"
  • "\AppData\Local\Temp"
  • "\Program Files (x86)"
  • "\Program Files (x64)"
  • "\Program Files"
  • "\WINDOWS"
  • "\ProgramData"
  • "\Intel"
  • "$\"

The filetypes it looks for to encrypt are:

.doc, .docx, .xls, .xlsx, .ppt, .pptx, .pst, .ost, .msg, .eml, .vsd, .vsdx, .txt, .csv, .rtf, .123, .wks, .wk1, .pdf, .dwg, .onetoc2, .snt, .jpeg, .jpg, .docb, .docm, .dot, .dotm, .dotx, .xlsm, .xlsb, .xlw, .xlt, .xlm, .xlc, .xltx, .xltm, .pptm, .pot, .pps, .ppsm, .ppsx, .ppam, .potx, .potm, .edb, .hwp, .602, .sxi, .sti, .sldx, .sldm, .sldm, .vdi, .vmdk, .vmx, .gpg, .aes, .ARC, .PAQ, .bz2, .tbk, .bak, .tar, .tgz, .gz, .7z, .rar, .zip, .backup, .iso, .vcd, .bmp, .png, .gif, .raw, .cgm, .tif, .tiff, .nef, .psd, .ai, .svg, .djvu, .m4u, .m3u, .mid, .wma, .flv, .3g2, .mkv, .3gp, .mp4, .mov, .avi, .asf, .mpeg, .vob, .mpg, .wmv, .fla, .swf, .wav, .mp3, .sh, .class, .jar, .java, .rb, .asp, .php, .jsp, .brd, .sch, .dch, .dip, .pl, .vb, .vbs, .ps1, .bat, .cmd, .js, .asm, .h, .pas, .cpp, .c, .cs, .suo, .sln, .ldf, .mdf, .ibd, .myi, .myd, .frm, .odb, .dbf, .db, .mdb, .accdb, .sql, .sqlitedb, .sqlite3, .asc, .lay6, .lay, .mml, .sxm, .otg, .odg, .uop, .std, .sxd, .otp, .odp, .wb2, .slk, .dif, .stc, .sxc, .ots, .ods, .3dm, .max, .3ds, .uot, .stw, .sxw, .ott, .odt, .pem, .p12, .csr, .crt, .key, .pfx, .der

credit herulume and others, thanks for extracting and else from the binary.

Note: I will not take any responsibility to any attack or actions that use this malwareโ›”.

Owner

  • Name: Sulaiman
  • Login: byt3n33dl3
  • Kind: user
  • Location: Error 403: Not on earth

I N F R A X 8 6

GitHub Events

Total
  • Watch event: 17
  • Fork event: 5
  • Commit comment event: 2
Last Year
  • Watch event: 17
  • Fork event: 5
  • Commit comment event: 2

Issues and Pull Requests

Last synced: about 1 year ago

All Time
  • Total issues: 0
  • Total pull requests: 0
  • Average time to close issues: N/A
  • Average time to close pull requests: N/A
  • Total issue authors: 0
  • Total pull request authors: 0
  • Average comments per issue: 0
  • Average comments per pull request: 0
  • Merged pull requests: 0
  • Bot issues: 0
  • Bot pull requests: 0
Past Year
  • Issues: 0
  • Pull requests: 0
  • Average time to close issues: N/A
  • Average time to close pull requests: N/A
  • Issue authors: 0
  • Pull request authors: 0
  • Average comments per issue: 0
  • Average comments per pull request: 0
  • Merged pull requests: 0
  • Bot issues: 0
  • Bot pull requests: 0
Top Authors
Issue Authors
Pull Request Authors
Top Labels
Issue Labels
Pull Request Labels