New Kill-Switch, New Sinkhole

ByCheck Point Threat Intelligence and Research team

Check Point Threat Intelligence and Research team has just registered a brand new kill-switch domain used by a fresh sample of the WannaCry Ransomware.

In the last few hours we witnessed a stunning hit rate of 1 connection per second.

Registering the domain activated the kill-switch, and these thousands of to-be victims are safe from the ransomware’s damage.

Our research shows that the kill-switch works the same as in earlier versions, and the rest of the code is similar to the older versions.

New kill-switch: ayylmaotjhsstasdfasdfasdfasdfasdfasdfasdf[.]com

MD5: 4287E15AF6191F5CAB1C92FF7BE8DCC3

New Phishing Campaign Exploits Meta Business Suite to Target SMBs Across the U.S. and Beyond

With more than 5.4 billion users worldwide (according to Statista), ...

Executive Insights November 4, 2025

Inside the Rise of AI-Powered Pharmaceutical Scams

Introduction Over the past few months, we identified an emerging ...

Research November 4, 2025

Exploiting Trust in Collaboration: Microsoft Teams Vulnerabilities Uncovered

Trust alone isn’t a security strategy. That’s the key lesson ...

Artificial Intelligence November 3, 2025

Cracking XLoader with AI: How Generative Models Accelerate Malware Analysis

Key Highlights XLoader 8.0 malware is one of the most ...

You may also like

New Phishing Campaign Exploits Meta Business Suite to Target SMBs Across the U.S. and Beyond

Inside the Rise of AI-Powered Pharmaceutical Scams

Exploiting Trust in Collaboration: Microsoft Teams Vulnerabilities Uncovered

Cracking XLoader with AI: How Generative Models Accelerate Malware Analysis