Overview

overview

10

Static

static

DHL-119055...df.exe

windows7-x64

10

DHL-119055...df.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    DHL-119055 de recibo,pdf.exe

  • Size

    336KB

  • Sample

    220928-t12l1agee5

  • MD5

    08bf261214d109955c81c62fb4e6cdd2

  • SHA1

    c748b86f978631c76bbb7f631360f431cd3ac3ad

  • SHA256

    18d7cdf63d95a5fd7bf6fff361655b6e8857b14d0444315b3ffca538877b9aa1

  • SHA512

    e122a86e427a4fde960857bc460d31a55255b48ee29e35339a00b4f949ba3f30a96aca517f2948f870faefcf021759a18abafea6e7e86f08371dc5dba567a3a5

  • SSDEEP

    3072:6rJZ3ZQ5F4VewO24oeK1z/JMUVoyfE5JCFZRtq971hEbaFSkjiRrP6Aq:yxO24oHz/jqJCFZeca+

Score
10/10
azorultinfostealertrojan

Malware Config

Extracted

Family

azorult

C2

http://kngppdp.shop/PL341/index.php

Targets

    • Target

      DHL-119055 de recibo,pdf.exe

    • Size

      336KB

    • MD5

      08bf261214d109955c81c62fb4e6cdd2

    • SHA1

      c748b86f978631c76bbb7f631360f431cd3ac3ad

    • SHA256

      18d7cdf63d95a5fd7bf6fff361655b6e8857b14d0444315b3ffca538877b9aa1

    • SHA512

      e122a86e427a4fde960857bc460d31a55255b48ee29e35339a00b4f949ba3f30a96aca517f2948f870faefcf021759a18abafea6e7e86f08371dc5dba567a3a5

    • SSDEEP

      3072:6rJZ3ZQ5F4VewO24oeK1z/JMUVoyfE5JCFZRtq971hEbaFSkjiRrP6Aq:yxO24oHz/jqJCFZeca+

    Score
    10/10
    azorultinfostealertrojan

    • Azorult

      An information stealer that was first discovered in 2016, targeting browsing history and passwords.

      trojaninfostealerazorult

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks