Analysis of Actual Propagation Behavior of WannaCry Within an Intranet (Extended Abstract)

  • Takanori OikawaEmail author
  • Masahiko Takenaka
  • Yuki Unno
Conference paper
Part of the Advances in Intelligent Systems and Computing book series (AISC, volume 1036)


WannaCry is a ransomware that cannot only encrypt the victim’s data but propagate laterally in the victim’s local network. We present the results of analysis of some samples of WannaCry and actual propagation behavior of WannaCry in intranet environment.


  1. 1.
    Barlyn, S.: Insurance giant Lloyd’s of London: global cyber attack could trigger $53 billion in losses—the same as Hurricane Sandy. Business Insider, 17 July 2017.
  2. 2.
    Google: Google Translate.
  3. 3.
    Condra, J., Costello, J., Chu, S.: Linguistic Analysis of WannaCry Ransomware Messages Suggests Chinese-Speaking Authors. Flashpoint, 25 May 2017.
  4. 4.
    Solon, O.: Marcus Hutchins: cybersecurity experts rally around arrested WannaCry ‘hero’. The Guardian, 11 August 2017.
  5. 5.
  6. 6.
  7. 7.
    Microsoft: Microsoft Security Bulletin MS17-010, 14 March 2017.
  8. 8.
    TrendMicro: Massive WannaCry/Wcry Ransomware Attack Hits Various Countries. 12 May 2017.
  9. 9.
    Kuzuno, H., Inagaki, S., Magata, K.: Evaluation of Multiple WannaCry Reports from Various Organizations, CSS2017, 2B2-3 (2017)Google Scholar
  10. 10.
    Unno, Y., Oikawa, T.: High-speed forensic technology against targeted cyber attacks (extended abstract). In: NBiS 2017 (2017)Google Scholar

Copyright information

© Springer Nature Switzerland AG 2020

Authors and Affiliations

  1. 1.Fujitsu Laboratories Ltd.KawasakiJapan

Personalised recommendations