azorult | f4a373fc450be3031cd58ed55a1a1e3357851bc25a63c16f0804ea035d3b881d | Triage

Sharing

General

Target

DHL EXPRESS LEVERINGSBERICHT VOOR,pdf.exe
Size

27KB
Sample

221013-jlzhzsbdc5
MD5

4dc3ea5a5834d3dfdb1e539d639bbd40
SHA1

adb17342c8af9f6dfca3506ac9da9da886b81d88
SHA256

f4a373fc450be3031cd58ed55a1a1e3357851bc25a63c16f0804ea035d3b881d
SHA512

1e1c0efdde9aba9b7472d92fdc2f95ea4b4beaec517737d98377b19dcdd2d992040ca32a9c0eea4a5d367040ea9e0acbd3b66a2d582e24d5100a725c84f593e7
SSDEEP

384:xXqVQvSX3Ui4EGtI1g4+vU81Q5eBZAvmy8ZpHzGovUJAYkAYMjZB:wHXkTnlxUGQ5S+v7iRPPRMNB

Score

10^/10

azorult infostealer trojan

Malware Config

Extracted

Family

azorult

C2

http://141.98.6.75/dike/index.php

Targets

- Target
  
  DHL EXPRESS LEVERINGSBERICHT VOOR,pdf.exe
- Size
  
  27KB
- MD5
  
  4dc3ea5a5834d3dfdb1e539d639bbd40
- SHA1
  
  adb17342c8af9f6dfca3506ac9da9da886b81d88
- SHA256
  
  f4a373fc450be3031cd58ed55a1a1e3357851bc25a63c16f0804ea035d3b881d
- SHA512
  
  1e1c0efdde9aba9b7472d92fdc2f95ea4b4beaec517737d98377b19dcdd2d992040ca32a9c0eea4a5d367040ea9e0acbd3b66a2d582e24d5100a725c84f593e7
- SSDEEP
  
  384:xXqVQvSX3Ui4EGtI1g4+vU81Q5eBZAvmy8ZpHzGovUJAYkAYMjZB:wHXkTnlxUGQ5S+v7iRPPRMNB
Score

10^/10

azorult infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

azorultinfostealertrojan