General

  • Target

    fe57590741c828f67cc00d0311ef495dc1f6083205c1665dddaa9832f40a934d.exe

  • Size

    1.4MB

  • Sample

    221114-fb9peseg98

  • MD5

    024b05cafe722f640ddb38071a2da8df

  • SHA1

    1645278d2f87598b92fc3bf51e35d4e745e41b74

  • SHA256

    fe57590741c828f67cc00d0311ef495dc1f6083205c1665dddaa9832f40a934d

  • SHA512

    3881a4fd9c0f62dbb4eacc32305fc708a3e285c9c38cd5ee21ed648d3623ad71f79b009983be21c52d7a74b1db9edf1c715317b9ef763eb0b77dc3990677f19d

  • SSDEEP

    24576:j9skiZqs+QJ529+RipvL1SXk1QE1RGOTnIEQc4au9NgxnHNnOF5e:iktsw9+ApwXk1QE1RzsEQPaxHNOFE

Malware Config

Targets

    • Target

      fe57590741c828f67cc00d0311ef495dc1f6083205c1665dddaa9832f40a934d.exe

    • Size

      1.4MB

    • MD5

      024b05cafe722f640ddb38071a2da8df

    • SHA1

      1645278d2f87598b92fc3bf51e35d4e745e41b74

    • SHA256

      fe57590741c828f67cc00d0311ef495dc1f6083205c1665dddaa9832f40a934d

    • SHA512

      3881a4fd9c0f62dbb4eacc32305fc708a3e285c9c38cd5ee21ed648d3623ad71f79b009983be21c52d7a74b1db9edf1c715317b9ef763eb0b77dc3990677f19d

    • SSDEEP

      24576:j9skiZqs+QJ529+RipvL1SXk1QE1RGOTnIEQc4au9NgxnHNnOF5e:iktsw9+ApwXk1QE1RzsEQPaxHNOFE

    • Azov

      A wiper seeking only damage, first seen in 2022.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Tasks