azorult | 92b3d4f6112dd0e8db60ad346afdbaabbcef9e184c94fd94c449b9a328035467 | Triage

Sharing

General

Target

588f7c5f4fdb88e93af07fd21582d525.exe
Size

453KB
Sample

221022-qy4f2adedm
MD5

588f7c5f4fdb88e93af07fd21582d525
SHA1

16fffa711fa580a1a98e938b9b0a156c7a5eacf5
SHA256

92b3d4f6112dd0e8db60ad346afdbaabbcef9e184c94fd94c449b9a328035467
SHA512

80085560862837261aa1acaa670d84adade70a1cccd663a8bca50a2ef577fa3e2c85d1f541c0023c5797532978552ef0d5d8e888e7941cd077cb7fe1e6f98399
SSDEEP

3072:eSE6UqiuN0QOnbGEmRPIbrKB2SCA+GqNBVRm/tpz+cSavZFvyKmPxk81HpoXUjYj:e

Score

10^/10

azorult infostealer trojan

Malware Config

Extracted

Family

azorult

C2

http://cripslayerx.com/PL341/PL341/

Targets

- Target
  
  588f7c5f4fdb88e93af07fd21582d525.exe
- Size
  
  453KB
- MD5
  
  588f7c5f4fdb88e93af07fd21582d525
- SHA1
  
  16fffa711fa580a1a98e938b9b0a156c7a5eacf5
- SHA256
  
  92b3d4f6112dd0e8db60ad346afdbaabbcef9e184c94fd94c449b9a328035467
- SHA512
  
  80085560862837261aa1acaa670d84adade70a1cccd663a8bca50a2ef577fa3e2c85d1f541c0023c5797532978552ef0d5d8e888e7941cd077cb7fe1e6f98399
- SSDEEP
  
  3072:eSE6UqiuN0QOnbGEmRPIbrKB2SCA+GqNBVRm/tpz+cSavZFvyKmPxk81HpoXUjYj:e
Score

10^/10

azorult infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

azorultinfostealertrojan

behavioral2