azorult | 5cea4f2f48892b4d20c6e2a0aebfd27e765c1ce6f6f7cab2d48505b08dfd4bd1 | Triage

Submit
Reports

Overview

overview

Static

static

5cea4f2f48...d1.exe

windows7-x64

5cea4f2f48...d1.exe

windows10-2004-x64

1

Sharing

General

Target

5cea4f2f48892b4d20c6e2a0aebfd27e765c1ce6f6f7cab2d48505b08dfd4bd1
Size

613KB
Sample

220801-flacbaagb5
MD5

3f192688be72ab530a25aa522c7d94cc
SHA1

ef58bdd76b4e04ff7331ee034d391351b4e2fdcf
SHA256

5cea4f2f48892b4d20c6e2a0aebfd27e765c1ce6f6f7cab2d48505b08dfd4bd1
SHA512

0eb5634936ec3d7c376deecfff526912ccda7322303562f23b645b699d7ddeceb9123f3279d534d5dc80949d8c535f0d02f21bd65f4fcd16d1d8d64e89a34e1f

Score

10^/10

azorult infostealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

5cea4f2f48892b4d20c6e2a0aebfd27e765c1ce6f6f7cab2d48505b08dfd4bd1.exe

Resource

win7-20220715-en

azorult infostealer trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

5cea4f2f48892b4d20c6e2a0aebfd27e765c1ce6f6f7cab2d48505b08dfd4bd1.exe

Resource

win10v2004-20220721-en

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Extracted

Family

azorult

C2

http://takq.us/azop/index.php

Targets

- Target
  
  5cea4f2f48892b4d20c6e2a0aebfd27e765c1ce6f6f7cab2d48505b08dfd4bd1
- Size
  
  613KB
- MD5
  
  3f192688be72ab530a25aa522c7d94cc
- SHA1
  
  ef58bdd76b4e04ff7331ee034d391351b4e2fdcf
- SHA256
  
  5cea4f2f48892b4d20c6e2a0aebfd27e765c1ce6f6f7cab2d48505b08dfd4bd1
- SHA512
  
  0eb5634936ec3d7c376deecfff526912ccda7322303562f23b645b699d7ddeceb9123f3279d534d5dc80949d8c535f0d02f21bd65f4fcd16d1d8d64e89a34e1f
Score

10^/10

azorult infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

azorultinfostealertrojan

behavioral2

© 2018-2024

Terms | Privacy