General
-
Target
RFQ101022-Caliber Fasteners.exe
-
Size
885KB
-
Sample
221018-h4x77sfbep
-
MD5
87f22a4a7bb3f9636ef819acc6e4da55
-
SHA1
701308bb1ff607d31599a4a5d4fc7f65a8888095
-
SHA256
892fe91631a832b3979b8d0bcc771ce292533a6d7444e07f5c7cc390c226a4b4
-
SHA512
b69a6e652c9a9b55cf5f0b55c5e40c528f7b0d8fc0bee6e8434ed852a51d22a729489d04be6070cf0c7d5b1da277eb66c4b64e108f43208c284889d8acae14f8
-
SSDEEP
12288:uTQO2iNpJkhtOj+35KxkuDw99/nAjvyosfXA3ZJJZu:sD1ktOj+35Kx1DwH4jDs/A3ZTZ
Static task
static1
Behavioral task
behavioral1
Sample
RFQ101022-Caliber Fasteners.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
RFQ101022-Caliber Fasteners.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
azorult
http://leig.shop/leig/index.php
Targets
-
-
Target
RFQ101022-Caliber Fasteners.exe
-
Size
885KB
-
MD5
87f22a4a7bb3f9636ef819acc6e4da55
-
SHA1
701308bb1ff607d31599a4a5d4fc7f65a8888095
-
SHA256
892fe91631a832b3979b8d0bcc771ce292533a6d7444e07f5c7cc390c226a4b4
-
SHA512
b69a6e652c9a9b55cf5f0b55c5e40c528f7b0d8fc0bee6e8434ed852a51d22a729489d04be6070cf0c7d5b1da277eb66c4b64e108f43208c284889d8acae14f8
-
SSDEEP
12288:uTQO2iNpJkhtOj+35KxkuDw99/nAjvyosfXA3ZJJZu:sD1ktOj+35Kx1DwH4jDs/A3ZTZ
Score10/10-
Azorult
An information stealer that was first discovered in 2016, targeting browsing history and passwords.
-
Suspicious use of SetThreadContext
-