azorult | 2e970a59c6813b50be54a729c3e4939347302f73bc302e3227114b73d0ec7dce | Triage

Sharing

General

Target

2e970a59c6813b50be54a729c3e4939347302f73bc302e3227114b73d0ec7dce.exe
Size

495KB
Sample

220521-yh1zzagcdn
MD5

28c639c743ca0c9af8e46abc9d008b83
SHA1

aa5fb9beb8e12e2bee41a90cf9ef68cc3dc0c0eb
SHA256

2e970a59c6813b50be54a729c3e4939347302f73bc302e3227114b73d0ec7dce
SHA512

1e454c58df3f7b427a764da1c5153fe305d01260ad32a0a03c7540bc56454cffac69cc585177ac31abc646c649d9d15e14eb1b49c983007900eca69a8089334e

Score

10^/10

azorult infostealer trojan

Malware Config

Extracted

Family

azorult

C2

http://5.161.106.206/index.php

Targets

- Target
  
  2e970a59c6813b50be54a729c3e4939347302f73bc302e3227114b73d0ec7dce.exe
- Size
  
  495KB
- MD5
  
  28c639c743ca0c9af8e46abc9d008b83
- SHA1
  
  aa5fb9beb8e12e2bee41a90cf9ef68cc3dc0c0eb
- SHA256
  
  2e970a59c6813b50be54a729c3e4939347302f73bc302e3227114b73d0ec7dce
- SHA512
  
  1e454c58df3f7b427a764da1c5153fe305d01260ad32a0a03c7540bc56454cffac69cc585177ac31abc646c649d9d15e14eb1b49c983007900eca69a8089334e
Score

10^/10

azorult infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

azorultinfostealertrojan

behavioral2

azorultinfostealertrojan