General

  • Target

    2025-03-06_34a0bd1e65e440169c6e3c065f93707d_ryuk

  • Size

    691KB

  • Sample

    250306-twqnyasxby

  • MD5

    34a0bd1e65e440169c6e3c065f93707d

  • SHA1

    6202884477c17e4fe590f37bb30100a7f8bcc37d

  • SHA256

    1f029aff980ff43c67b51757d61d767287c971e5283cab9aac6479991fed98ab

  • SHA512

    08588e9da4e47efe47906227ec608227cbc1e42c96b825003a70138469a832ca186fd456eed9cf1c7f7f4a08067e263b1171490647118ff35ab380ab7c78c2da

  • SSDEEP

    6144:KNsbZLZ9jOW9Ds9v7SzrX1VLLnCJrMoVmLse09xJTtP7/F30AgVg6YcNI:KNsbr9Ds9vOzJ14MoVmQN9MAg2t

Malware Config

Targets

    • Target

      2025-03-06_34a0bd1e65e440169c6e3c065f93707d_ryuk

    • Size

      691KB

    • MD5

      34a0bd1e65e440169c6e3c065f93707d

    • SHA1

      6202884477c17e4fe590f37bb30100a7f8bcc37d

    • SHA256

      1f029aff980ff43c67b51757d61d767287c971e5283cab9aac6479991fed98ab

    • SHA512

      08588e9da4e47efe47906227ec608227cbc1e42c96b825003a70138469a832ca186fd456eed9cf1c7f7f4a08067e263b1171490647118ff35ab380ab7c78c2da

    • SSDEEP

      6144:KNsbZLZ9jOW9Ds9v7SzrX1VLLnCJrMoVmLse09xJTtP7/F30AgVg6YcNI:KNsbr9Ds9vOzJ14MoVmQN9MAg2t

    • Azov

      A wiper seeking only damage, first seen in 2022.

    • Azov family

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks