Extracted

• • Target

    NUEVA ORDEN-MATSA 10-2022,.exe

  • Size

    162KB

  • MD5

    5bb547610939ac07657f6216a28498cb

  • SHA1

    89eadfa478804f0a5798e26871ff45c4906349ee

  • SHA256

    3d70466e2cb7b2b051feb16750acb3b40af81f4595a0c0ffa865c13907820ca2

  • SHA512

    42279f2771b176bb6d642ce76b88064fd1fefc8253b75feedb038ddaf8427d2e2179266140be9a87337957f3b584c6bdef3bef39d33059ff350e1d1567d65761

  • SSDEEP

    3072:23Onsvm9E08KqGhoz/AbFuaYJH75up/YhIejP0e8xLqPyBXq:mhv2E9fG2zOuauHu/YTjMe8

  Score

  10^/10

  azorultcollectioninfostealerspywarestealertrojan

  • Azorult

    An information stealer that was first discovered in 2016, targeting browsing history and passwords.

    trojaninfostealerazorult

  • Loads dropped DLL

  • Reads local data of messenger clients

    Infostealers often target stored data of messaging applications, which can include saved credentials and account information.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Suspicious use of SetThreadContext

  behavioral1behavioral2