3bf071be282d16696584af13dc38e1c730f127f1b49504408676225d42874e1e | Triage

Submit
Reports

Overview

overview

Static

static

3bf071be28...1e.exe

windows7_x64

3bf071be28...1e.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

3bf071be282d16696584af13dc38e1c730f127f1b49504408676225d42874e1e.exe

Resource

win7-20220414-en

azorult infostealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

3bf071be282d16696584af13dc38e1c730f127f1b49504408676225d42874e1e.exe

Resource

win10v2004-20220414-en

azorult infostealer trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

3bf071be282d16696584af13dc38e1c730f127f1b49504408676225d42874e1e
Size

572KB
MD5

0aa7e834d1a5abf2333da9bb9add7905
SHA1

bba965168af94f98fdb60ff6ab074fc1ea9c840b
SHA256

3bf071be282d16696584af13dc38e1c730f127f1b49504408676225d42874e1e
SHA512

19ea9a769e1c1dff122ba7f800bf7c0cd22cefe2de2027f31f3d775ee9143361064fd06272a55f2dd6241535f7ab6e2bdf33a21f906acdab41528c17b22f38bb
SSDEEP

6144:JwiAYaMvOeu9WZPL4Zq9uLNaBWTNmIJATZ5cWvxQHOoXzj4cNm44k2p/LmrQSIKf:JwcaR9WSlNaudkUmxSOoX/mHk2458N

Score

N/A

Malware Config

Signatures

Files

3bf071be282d16696584af13dc38e1c730f127f1b49504408676225d42874e1e
.exe windows x86

d0ede7756b4a8ce0cc97cca9101bf928

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

shimeng

SE_InstallAfterInit
SE_DllLoaded
SE_IsShimDll
SE_ProcessDying

kernel32

CreateFileMappingW
GetStringTypeA
GetProcAddress
GetModuleHandleA
GetSystemDirectoryA
MoveFileW
FindClose
GetStartupInfoW
WaitForSingleObjectEx
WaitNamedPipeW
CreateMailslotA
LoadLibraryW
lstrcmp
SystemTimeToFileTime
GetVersion
FindClose
FindClose
SetErrorMode
ReadFile

cryptdll

CDBuildVect
MD5Update
MD5Init

dbnmpntw

ConnectionWrite
ConnectionClose
ConnectionError
ConnectionRead

user32

LoadImageA
LoadMenuW
DialogBoxParamW
LoadIconA
IsCharLowerW
GetPropA
GetFocus
PeekMessageA
IsDialogMessageW
DispatchMessageA
ShowWindow

Sections

.text
Size: 557KB - Virtual size: 557KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_WRITE

.mdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy