General

  • Target

    0181bcd0a69877971304298ba912ff279d801a3a3470ff3f5a6ea2ad9f1c216b

  • Size

    1.2MB

  • Sample

    221114-f86c9sab6y

  • MD5

    047dc74250c011b6bdbc68457b8413ec

  • SHA1

    0e0bc8e7cb0526046493d88dfe8922f47bb320bf

  • SHA256

    0181bcd0a69877971304298ba912ff279d801a3a3470ff3f5a6ea2ad9f1c216b

  • SHA512

    0eb860247238f434b62ea9ad75ce87d31d95e890f2a013b5f2f0bdcab98d27680ced949e1ccbf32774e8a44f3be5ddf8c8c68b006c5f082034bf5e9d2956e247

  • SSDEEP

    24576:7sbW15OjfvKbsu6yao72VC0jIMuRNrjUjW6:7sW15NbsAaO2VhjIMyjYD

Malware Config

Targets

    • Target

      0181bcd0a69877971304298ba912ff279d801a3a3470ff3f5a6ea2ad9f1c216b

    • Size

      1.2MB

    • MD5

      047dc74250c011b6bdbc68457b8413ec

    • SHA1

      0e0bc8e7cb0526046493d88dfe8922f47bb320bf

    • SHA256

      0181bcd0a69877971304298ba912ff279d801a3a3470ff3f5a6ea2ad9f1c216b

    • SHA512

      0eb860247238f434b62ea9ad75ce87d31d95e890f2a013b5f2f0bdcab98d27680ced949e1ccbf32774e8a44f3be5ddf8c8c68b006c5f082034bf5e9d2956e247

    • SSDEEP

      24576:7sbW15OjfvKbsu6yao72VC0jIMuRNrjUjW6:7sW15NbsAaO2VhjIMyjYD

    • Azov

      A wiper seeking only damage, first seen in 2022.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Tasks