azorult | 5f72024cc8a15038a120024eda6225ea45982eb8d5f37ab49d0b7b0391e9b8b2 | Triage

Submit
Reports

Overview

overview

Static

static

5f72024cc8...b2.exe

windows7_x64

5f72024cc8...b2.exe

windows10-2004_x64

Sharing

General

Target

5f72024cc8a15038a120024eda6225ea45982eb8d5f37ab49d0b7b0391e9b8b2.exe
Size

441KB
Sample

220521-yh2lhadag7
MD5

0167add7fe843212624f60cc748522ec
SHA1

e3fe43b5d4638e41c5f75517f934c80e76eadb9a
SHA256

5f72024cc8a15038a120024eda6225ea45982eb8d5f37ab49d0b7b0391e9b8b2
SHA512

a972a322e90c6aeb6502d4b436e8534be17f7c43d23b0bc2c968447a2adc9ec36e70e134e7c0e696955875e81fc7e77b10d5fa4302294393f6f9bd948aeffe0c

Score

10^/10

azorult infostealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

5f72024cc8a15038a120024eda6225ea45982eb8d5f37ab49d0b7b0391e9b8b2.exe

Resource

win7-20220414-en

azorult infostealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5f72024cc8a15038a120024eda6225ea45982eb8d5f37ab49d0b7b0391e9b8b2.exe

Resource

win10v2004-20220414-en

azorult infostealer trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

azorult

C2

http://e4v5sa.xyz/PL341/index.php

Targets

- Target
  
  5f72024cc8a15038a120024eda6225ea45982eb8d5f37ab49d0b7b0391e9b8b2.exe
- Size
  
  441KB
- MD5
  
  0167add7fe843212624f60cc748522ec
- SHA1
  
  e3fe43b5d4638e41c5f75517f934c80e76eadb9a
- SHA256
  
  5f72024cc8a15038a120024eda6225ea45982eb8d5f37ab49d0b7b0391e9b8b2
- SHA512
  
  a972a322e90c6aeb6502d4b436e8534be17f7c43d23b0bc2c968447a2adc9ec36e70e134e7c0e696955875e81fc7e77b10d5fa4302294393f6f9bd948aeffe0c
Score

10^/10

azorult infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

azorultinfostealertrojan

behavioral2

azorultinfostealertrojan

© 2018-2024

Terms | Privacy