azorult | 5e500591cc85d6182a86762c1961cc2fc54c5c9fa6fa05b212a4e85c574d86cd | Triage

Submit
Reports

Overview

overview

Static

static

1

TRS-11-0221-020.exe

windows7_x64

7

TRS-11-0221-020.exe

windows10_x64

Sharing

General

Target

TRS-11-0221-020.exe
Size

186KB
Sample

210408-4kdbge4sxs
MD5

a82f88615f13b54d9c6bacf14ea5d716
SHA1

8213b8485c40ae76e896da600cbe26a827f4d46d
SHA256

5e500591cc85d6182a86762c1961cc2fc54c5c9fa6fa05b212a4e85c574d86cd
SHA512

9335cfe916960fd61a0b6ba377167479826eabc3c3d45e8d80c33514592053381abb1dc92d554aa3c1e4a2a473afd28f7965a2b17a1b0c2a5d8b5b0279dd39f6

Score

10^/10

azorult infostealer spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

TRS-11-0221-020.exe

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

TRS-11-0221-020.exe

Resource

win10v20201028

azorult infostealer spyware stealer trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

azorult

C2

http://bengalcement.com.bd/AxPu/index.php

Targets

- Target
  
  TRS-11-0221-020.exe
- Size
  
  186KB
- MD5
  
  a82f88615f13b54d9c6bacf14ea5d716
- SHA1
  
  8213b8485c40ae76e896da600cbe26a827f4d46d
- SHA256
  
  5e500591cc85d6182a86762c1961cc2fc54c5c9fa6fa05b212a4e85c574d86cd
- SHA512
  
  9335cfe916960fd61a0b6ba377167479826eabc3c3d45e8d80c33514592053381abb1dc92d554aa3c1e4a2a473afd28f7965a2b17a1b0c2a5d8b5b0279dd39f6
Score

10^/10

azorult infostealer spyware stealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- Loads dropped DLL
- Reads local data of messenger clients
  Infostealers often target stored data of messaging applications, which can include saved credentials and account information.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

azorultinfostealerspywarestealertrojan

© 2018-2024

Terms | Privacy