General
-
Target
916f3bc13b0c5479c736c3dad4e57b59fa7a031d704830f601a2cb0e0998a28f
-
Size
666KB
-
Sample
240614-bssd9atcpp
-
MD5
82f382141ad2aad767da41d5363f27db
-
SHA1
facb4073b598df1294ab1cc1a4cbe8e66ddbc78e
-
SHA256
916f3bc13b0c5479c736c3dad4e57b59fa7a031d704830f601a2cb0e0998a28f
-
SHA512
b50749df44022128cbb5be8e709ac2146ed7a90414a97969c9ffaaa2f82505943b8d31744b40f0d511519cdeb829c8bcad8177c2d727556e5db1579414be116e
-
SSDEEP
6144:qXXZgrfwMrFOWA8mczTjaldjtG6HiJChWr+3zl/GmCKBSKs9xJQ4t0BHQQf+L+J+:GXirfwMsh2mbjjJBJ9s9Yfh4CofeZ1w1
Malware Config
Targets
-
-
Target
916f3bc13b0c5479c736c3dad4e57b59fa7a031d704830f601a2cb0e0998a28f
-
Size
666KB
-
MD5
82f382141ad2aad767da41d5363f27db
-
SHA1
facb4073b598df1294ab1cc1a4cbe8e66ddbc78e
-
SHA256
916f3bc13b0c5479c736c3dad4e57b59fa7a031d704830f601a2cb0e0998a28f
-
SHA512
b50749df44022128cbb5be8e709ac2146ed7a90414a97969c9ffaaa2f82505943b8d31744b40f0d511519cdeb829c8bcad8177c2d727556e5db1579414be116e
-
SSDEEP
6144:qXXZgrfwMrFOWA8mczTjaldjtG6HiJChWr+3zl/GmCKBSKs9xJQ4t0BHQQf+L+J+:GXirfwMsh2mbjjJBJ9s9Yfh4CofeZ1w1
Score10/10-
Azov
A wiper seeking only damage, first seen in 2022.
-
Renames multiple (57) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-