azorult | 52791843f94cb25ade99b10648a88cec302ea649aca888d58c4e86fc0d57cf87 | Triage

Sharing

General

Target

52791843f94cb25ade99b10648a88cec302ea649aca888d58c4e86fc0d57cf87
Size

192KB
Sample

210516-5zkvzyl2aj
MD5

6d5e58b241320a50e30820db5f693af9
SHA1

9b8fbc48f95c6e7a32b421103e78a228fffd6e70
SHA256

52791843f94cb25ade99b10648a88cec302ea649aca888d58c4e86fc0d57cf87
SHA512

bb489faca78e480e776c2d67fc657712cf70b511725fd10cf027b542801b2060972a6f9c998c912887ceba961599fe14a7ecfbed820f46ca48d681a82269d22f

Score

10^/10

azorult infostealer trojan

Malware Config

Extracted

Family

azorult

C2

http://rets.life/ers/index.php

Targets

- Target
  
  52791843f94cb25ade99b10648a88cec302ea649aca888d58c4e86fc0d57cf87
- Size
  
  192KB
- MD5
  
  6d5e58b241320a50e30820db5f693af9
- SHA1
  
  9b8fbc48f95c6e7a32b421103e78a228fffd6e70
- SHA256
  
  52791843f94cb25ade99b10648a88cec302ea649aca888d58c4e86fc0d57cf87
- SHA512
  
  bb489faca78e480e776c2d67fc657712cf70b511725fd10cf027b542801b2060972a6f9c998c912887ceba961599fe14a7ecfbed820f46ca48d681a82269d22f
Score

10^/10

azorult infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

azorultinfostealertrojan

behavioral2

azorultinfostealertrojan