Summary
IEICE Information and Communication Technology Forum
2018
Session Number:SESSION02
Session:
Number:SESSION02_2
Static and Dynamic Analysis of WannaCry Ransomware
Maxat Akbanov, Vassilios G. Vassilakis, Ioannis D. Moscholios, Michael D. Logothetis,
pp.-
Publication Date:2018/8/31
Online ISSN:2188-5079
DOI:10.34385/proc.32.SESSION02_2
PDF download (701.4KB)
Summary:
Nowadays ransomware presents a huge and the fastest growing problem for all types of users from small households to large corporations and government bodies. Modern day ransomware families implement sophisticated encryption and propagation schemes, thus limiting chances to recover the data almost to zero. In order to design and develop appropriate detection and mitigation mechanisms it is important to perform ransomware analysis and indemnify its features. In this work, we present our ransomware analysis results focusing on the infamous WannaCry ransomware. In particular, the presented research examines the WannaCry behaviour during its execution in a purpose-built virtual lab environment. We perform static and dynamic analysis using a wide range of malware analysis tools. The obtained results can be used for developing appropriate detection and mitigation mechanisms for WannaCry or other ransomware families that exhibit similar behaviour.