Overview

overview

10

Static

static

dc659d0624...91.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dc659d0624712f8331b4240509896a60eb6277bc26ebf041573de9039610aa91.zip

  • Size

    120KB

  • Sample

    221114-gff4cafb48

  • MD5

    07666da03fe703d3e91345edfe53a9c9

  • SHA1

    c4844d25732c5c9f3b624a86f7d641770c9e9127

  • SHA256

    283cbc75ed8f404e2f3e0453f18faf214193844cbfe9ce478c8b8714ad4d1048

  • SHA512

    5aaed87060f549875c16b26963c8749e7821162baf0f4a3b3fa209191d9071ffd4400fe80b468f6ffbcb2ca5df689d196fc722b26267a0fced7b273abd9908fb

  • SSDEEP

    3072:QY70BoYExF9l0quM5CvJ4Qq0xAVa/HFkHMFwLSGIf:Zx3l0qurvqQq0x9/HCHUvf

Score
10/10
azovpersistenceransomwarewiper

Malware Config

Targets

    • Target

      dc659d0624712f8331b4240509896a60eb6277bc26ebf041573de9039610aa91.exe

    • Size

      189KB

    • MD5

      c8440437385f5d0018a1b47af689d948

    • SHA1

      88ccafc5f1b5d31e6886f34e1176253267ac80d4

    • SHA256

      dc659d0624712f8331b4240509896a60eb6277bc26ebf041573de9039610aa91

    • SHA512

      86832d9cb60792575166dd64582b44d1758f1433b7de09ecae40b66d923a3cb5220604eab44fee460485bdd10a8922b737c998a5c99cfff17e8683bddcd978a8

    • SSDEEP

      3072:RplB7e7MRzRTrPU39BLGiKMll6rmsH5LIJIp+f5CC3CvcZtsSp:DlB7e7WzR/Ps9pK4l6rmoOIp+xWcZtpp

    Score
    10/10
    azovpersistenceransomwarewiper

    • Azov

      A wiper seeking only damage, first seen in 2022.

      ransomwarewiperazov

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks