General

  • Target

    cc50b6318ec5c304e95ae1b3377f8656c47971cc8332e971a6f35278c2377257

  • Size

    710KB

  • Sample

    220701-gfmk5aedhk

  • MD5

    4f7331df0c48221590f4fc2678e93ccf

  • SHA1

    f4067c28107132e920078802d11af94b1284bd8e

  • SHA256

    cc50b6318ec5c304e95ae1b3377f8656c47971cc8332e971a6f35278c2377257

  • SHA512

    71fa6fb47c59ac45c34f1ad59197a990664d5b4b1870b66231d9b5b38ae8d14b3671ae9fb78c2df27951ed31b8b2a116cb1faebcf1d299b91513a147eb440cc7

Malware Config

Extracted

Family

azorult

C2

mine https://worldatdoor.in/32/index.php

Targets

    • Target

      cc50b6318ec5c304e95ae1b3377f8656c47971cc8332e971a6f35278c2377257

    • Size

      710KB

    • MD5

      4f7331df0c48221590f4fc2678e93ccf

    • SHA1

      f4067c28107132e920078802d11af94b1284bd8e

    • SHA256

      cc50b6318ec5c304e95ae1b3377f8656c47971cc8332e971a6f35278c2377257

    • SHA512

      71fa6fb47c59ac45c34f1ad59197a990664d5b4b1870b66231d9b5b38ae8d14b3671ae9fb78c2df27951ed31b8b2a116cb1faebcf1d299b91513a147eb440cc7

    • Azorult

      An information stealer that was first discovered in 2016, targeting browsing history and passwords.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks