azorult | z[.]rar | Triage

Submit
Reports

Overview

overview

Static

static

keygen-pr.exe

windows7_x64

1

keygen-pr.exe

windows10_x64

1

keygen-step-1.exe

windows7_x64

keygen-step-1.exe

windows10_x64

keygen-step-3.exe

windows7_x64

7

keygen-step-3.exe

windows10_x64

1

keygen-step-4.exe

windows7_x64

keygen-step-4.exe

windows10_x64

9

keygen.bat

windows7_x64

keygen.bat

windows10_x64

Resubmissions

18-02-2021 10:24

210218-l1aaz1rfd6 10

17-02-2021 21:35

210217-2esapajnj2 10

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

keygen-pr.exe

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

keygen-pr.exe

Resource

win10v20201028

windows10_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

keygen-step-1.exe

Resource

win7v20201028

azorult infostealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

keygen-step-1.exe

Resource

win10v20201028

azorult infostealer trojan

windows10_x64

0 signatures

0 seconds

Behavioral task

behavioral5

Sample

keygen-step-3.exe

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral6

Sample

keygen-step-3.exe

Resource

win10v20201028

windows10_x64

0 signatures

0 seconds

Behavioral task

behavioral7

Sample

keygen-step-4.exe

Resource

win7v20201028

plugx raccoon redline 310b6bfba897d478c7212dc7fdbe942b00728875 bootkit discovery infostealer macro persistence spyware stealer trojan xlm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral8

Sample

keygen-step-4.exe

Resource

win10v20201028

bootkit evasion macro persistence spyware trojan xlm

windows10_x64

0 signatures

0 seconds

Behavioral task

behavioral9

Sample

keygen.bat

Resource

win7v20201028

azorult plugx pony raccoon redline 310b6bfba897d478c7212dc7fdbe942b00728875 bootkit discovery infostealer macro persistence rat spyware stealer trojan xlm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral10

Sample

keygen.bat

Resource

win10v20201028

azorult pony bootkit discovery evasion infostealer macro persistence rat spyware stealer trojan xlm

windows10_x64

0 signatures

0 seconds

General

Target

z.rar
Size

8.7MB
MD5

439e00a52e27f2a9c653cb58031277c3
SHA1

3d96d6337c31d0345a85ceae45bebf15d26ea695
SHA256

4470d04e7ddfe73366faf06ccbf50904961fe2999f4c8c23be35b820b6036209
SHA512

4bc57dbda7e07d3a4b8e957bcdcdb5d5e8dfe7b34a23cb4ead4781423dc5922bc2a8ccf9c8b6b6e2c8689aca6f52fdca67b17ca5c94f236e86cba2cf009a4866

Score

10^/10

azorult

Malware Config

Extracted

Family

azorult

C2

http://kvaka.li/1210776429.php

Signatures

Azorult family
azorult

Files

z.rar
.rar
keygen-pr.exe
.exe windows x86
keygen-step-1.exe
.exe windows x86
keygen-step-3.exe
.exe windows x86
keygen-step-4.exe
.exe windows x86
keygen.bat

© 2018-2024

Terms | Privacy