General

  • Target

    d46efc5dc17d0d82477066721102dd6780af070251688cfdd5b6326c415e74b4.exe

  • Size

    1.7MB

  • Sample

    221114-fajrlshh9y

  • MD5

    11c90f2017b3439e547aebe722318322

  • SHA1

    2ff3be7c9063ff424bd363b4029c4be1b2272e31

  • SHA256

    d46efc5dc17d0d82477066721102dd6780af070251688cfdd5b6326c415e74b4

  • SHA512

    86fd9817e7f98dcca689b3d2d86950abc043f18dbeb2378b661f4c6ec37cc40824402b32f531e617924eed5fc830f94459ea348ec667d851e2f02752eb90081f

  • SSDEEP

    49152:arZigbJBnn54ByGQ1vodxTd2bulcI1wXZTBz5VFo:a07ByGZfX18Fo

Malware Config

Targets

    • Target

      d46efc5dc17d0d82477066721102dd6780af070251688cfdd5b6326c415e74b4.exe

    • Size

      1.7MB

    • MD5

      11c90f2017b3439e547aebe722318322

    • SHA1

      2ff3be7c9063ff424bd363b4029c4be1b2272e31

    • SHA256

      d46efc5dc17d0d82477066721102dd6780af070251688cfdd5b6326c415e74b4

    • SHA512

      86fd9817e7f98dcca689b3d2d86950abc043f18dbeb2378b661f4c6ec37cc40824402b32f531e617924eed5fc830f94459ea348ec667d851e2f02752eb90081f

    • SSDEEP

      49152:arZigbJBnn54ByGQ1vodxTd2bulcI1wXZTBz5VFo:a07ByGZfX18Fo

    • Azov

      A wiper seeking only damage, first seen in 2022.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Tasks