General

  • Target

    58436826b1fbed14aa1435a74c9d1b87db7422c362e1e42b80d2b9e90ec997e6.exe

  • Size

    264KB

  • Sample

    221113-syl8vsbe59

  • MD5

    eb707c2864b47875cf7e183c738f6d1e

  • SHA1

    c32b4d0f7083091113991b08cd23601d9cee2c61

  • SHA256

    58436826b1fbed14aa1435a74c9d1b87db7422c362e1e42b80d2b9e90ec997e6

  • SHA512

    00ab31712a387e994706fea53cfd5a1fb97b3324b7bf1892218423224c0c64853c2dbf0f49181ea26d495968a2d4f89a54e0a4903c67d12409ce5425fd537258

  • SSDEEP

    6144:TvDq8HXs9cHhGTvG0Qc0Hz6geTB5/uwETjZVZc:TuIXs9bGWTf/kTjZc

Malware Config

Targets

    • Target

      58436826b1fbed14aa1435a74c9d1b87db7422c362e1e42b80d2b9e90ec997e6.exe

    • Size

      264KB

    • MD5

      eb707c2864b47875cf7e183c738f6d1e

    • SHA1

      c32b4d0f7083091113991b08cd23601d9cee2c61

    • SHA256

      58436826b1fbed14aa1435a74c9d1b87db7422c362e1e42b80d2b9e90ec997e6

    • SHA512

      00ab31712a387e994706fea53cfd5a1fb97b3324b7bf1892218423224c0c64853c2dbf0f49181ea26d495968a2d4f89a54e0a4903c67d12409ce5425fd537258

    • SSDEEP

      6144:TvDq8HXs9cHhGTvG0Qc0Hz6geTB5/uwETjZVZc:TuIXs9bGWTf/kTjZc

    • Azov

      A wiper seeking only damage, first seen in 2022.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Tasks