I've been revisiting the 2017 WannaCry incident recently for a project, specifically focusing on the moment Marcus Hutchins registered the sinkhole domain.

It's fascinating that the code actually checked for the domain's existence to *stop* itself (sandbox evasion technique), which inadvertently became its undoing. It's crazy to think a $100B damage run was halted by a $10 domain registration that was done partly out of curiosity.

I made a visual breakdown/documentary attempting to reconstruct this timeline and the specific mechanics of the exploit.

If anyone is interested in the visual reconstruction of the attack map and the kill switch logic, here is the video: [BURAYA YOUTUBE LİNKİ]

Curious to hear if you think we are better prepared today for something like EternalBlue?