1. D

    Hello and thank you so much for the kind welcome!

    Not sure what to do, I upgraded my windows 7 to the free windows 10 and I HATE IT!! My computer was so slow that I couldn't do anything on it and my little girl loves to play the sims but it was just impossible to play any games at all what soever and I ran Malwarebytes and Hitman and my...
  2. frogboy

    Security Alert Ransomware Attacks Continue in Ukraine with Mysterious WannaCry Clone

    Ransomware Attacks Continue in Ukraine with Mysterious WannaCry Clone A fourth ransomware campaign focused on Ukraine has surfaced today, following some of the patterns seen in past ransomware campaigns that have been aimed at the country, such as XData, PScrypt, and the infamous NotPetya...
  3. Winter Soldier

    Malware analysis WannaCry Interpreted Malware Analysis

    I made this static analysis a few days ago when I saw this thread in the HUB: https://malwaretips.com/threads/w-anna-cry-v2.71397/ So thanks to @Der.Reisende :) Now I've updated some things, but this analysis is primarily based on my interpretation of the very...very complex Hybrid Analysis...
  4. Andy Ful

    Is that true, that default deny security solutions can stop the EternalBlue & DoublePulsar attacks?

    The real problem with EternalBlue & DoublePulsar exploits (used by WannaCry ransomware) is the ability to remotely patch the kernel memory of the victim machine. The code is next extracted from the memory, dropped on the disk in the form of DLLs, and injected to the system processes. All of this...
  5. frogboy

    Security Alert Over 98% of All WannaCry Victims Were Using Windows 7

    Numbers released by Kaspersky Lab on Friday reveal that over 98% of all documented WannaCry infections were running versions of the Windows 7 operating system. Out of all Windows 7 users, the worst hit were users running Windows 7 64-bit edition, accounting for more than 60% of all infections...
  6. Winter Soldier

    Tutorial How WannaCry works (on an unpatched Windows system) and trying to avoid it.

    Here some basical steps about WCRY behavior and some tips. 1) You get the malware via social engineering attack, phishing mails, etc. 2) The malware installs itself on the PC taking advantage of the well-known EternalBlue flaw and puts mssecsvc.exe in the C:\windows directory. 3) It installs...
  7. Handsome Recluse

    Cybersecurity stocks boom after ransomware attack

    Companies see share prices rise sharply amid expected increase in spending on IT security after WannaCry hack Also related article, WannaCry attack lifts shares in cybersecurity firm Sophos to record high - Oxfordshire-based firm inundated with calls in wake of last week’s ransomware attack on...
  8. Parsh

    Security Alert WannaCry Decryption Tools Released; Unlock Files Without Paying Ransom

    Since Friday, more than three lakh computers in over 150 countries have been in the grips of WannaCry attack, with their workstations locked for ransom. While the famous variant is still attacking the unpatched PCs around the world, some hope can be seen now with the release of decryption...
  9. WinXPert

    WannaCry vs Deep Freeze.

    Here are my observations while testing some ransomwares specifically WannaCry2 running inside Deep Freeze 7.51.020.4170 First. I have two partitions C: and E: with Windows (7 Starter 32 bit) at drive C: Both drives are frozen WannaCry bleeds in Deep Freeze after switching to Thaw Mode and...
  10. Winter Soldier

    Malware Alert Is WannaCry linked to the Lazarus Group?

    As last Friday’s WannaCry (WannaCrypt) ransomware attack continues to cause ripples around the globe, links have emerged between the malware code and the infamous Lazarus Group. Lazarus is the group responsible for attacks on the Bangladesh Central Bank last year, Sony Pictures Entertainment in...
  11. rockstarrocks

    Expired Zemana Anti-Malware Premium 90 days

    Everyone deserves to be protected from #WannaCry Ransomware. To prove that we care today we give FREE UPGRADES TO EVERYONE TO OUR PREMIUM VERSION! Share the news with your friends! Zemana | Anti-Malware : WanaCry Protection It's my first time adding a thread in this section, i apologize...
  12. Winter Soldier

    Tutorial How to disable SMBv1 in Windows 10 and Windows Server

    The WannaCry/WanaCrypt0r worm exploits a vulnerability in Windows Server Message Block (SMB) version 1 (SMBv1), and it spreadslike wildfire. It is urged to disable SMBv1 in your Windows variant (Windows 10, 8.1, Server 2016, 2012R2), and here is how if you haven’t done so yet. MORE
  13. Retality

    Tutorial WannaCry Google Dork

    So despite all of the chaos going on with the WannaCry ransom ware, you can actually use a simple Google Dork to search for websites affected by the ransom ware. Although I haven't tested the websites yet, I can tell you that the robots.txt' of the websites have become either unresponsive or...