Malware Analysis – azov – 2009a024db69830d3e2154199c547bed

November 15, 2022

Malware Analysis

Score: 10

  • MALWARE FAMILY: azov
  • TAGS:family:azov, persistence, ransomware, spyware, stealer, wiper
  • MD5: 2009a024db69830d3e2154199c547bed
  • SHA1: 560e504a951149d8eb7a90c8d087ea45cd2fde40
  • ANALYSIS DATE: 2022-11-15T09:11:38Z
  • TTPS: T1012, T1120, T1082, T1060, T1112, T1005, T1081

ScoreMeaningExample
10Known badA malware family was detected.
8-9Likely maliciousOne or more known damaging malware attack patterns were detected.

Examples:
The deleting of shadow copies on Windows.
6-7Shows suspicious behaviourOne or more suspicious actions were detected. The detected actions can be malicious but also have (common) benign uses.

Examples:
Changing file permissions.
Anti-VM behaviour/trying to detect a VM.
2-5Likely benignOne or more interesting behaviours were detected. The detected actions are interesting enough to be notified about but are not directly malicious.
1No (potentially) malicious behaviour was detected.N/A
Tags: , , ,

You may have missed

Sliver C2

Sliver C2 Detected – 172[.]245[.]19[.]146:31337

May 9, 2024
Sliver C2

Sliver C2 Detected – 38[.]207[.]149[.]95:31337

May 9, 2024
CISA Logo

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

May 9, 2024
CISA Logo

CISA: CISA Releases Eight Industrial Control Systems Advisories

May 9, 2024
CISA Logo

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

May 9, 2024