azorult | 69bf90b66674ea72cec01a85291f00da3b76e39abaf3455d1ba793928afe3243 | Triage

Sharing

General

Target

54ab27d1eef9de4b873f1bbcdb831a702aca1c9b.exe
Size

129KB
Sample

221130-lcg9fsgc63
MD5

0386ed817dfa5d59b18ca55b08837bef
SHA1

54ab27d1eef9de4b873f1bbcdb831a702aca1c9b
SHA256

69bf90b66674ea72cec01a85291f00da3b76e39abaf3455d1ba793928afe3243
SHA512

a489ea814502abb10cbcf93611be73e02de5c28264ae7078fe9798219d2673ba5ab825eddea50c2d6bf94aaf74a3693f3dfb58118a38e16ffe9ccbf0d8788151
SSDEEP

3072:lOLyMIlnd1n/OSvKnYKAIl0XUbkxdFDkU0Ke6CZ5NfdjW:ILHIFdFOdAIl+Ubk2Uze3dj

Score

10^/10

azorult infostealer trojan

Malware Config

Extracted

Family

azorult

C2

https://discaredforftp.000webhostapp.com/

Targets

- Target
  
  54ab27d1eef9de4b873f1bbcdb831a702aca1c9b.exe
- Size
  
  129KB
- MD5
  
  0386ed817dfa5d59b18ca55b08837bef
- SHA1
  
  54ab27d1eef9de4b873f1bbcdb831a702aca1c9b
- SHA256
  
  69bf90b66674ea72cec01a85291f00da3b76e39abaf3455d1ba793928afe3243
- SHA512
  
  a489ea814502abb10cbcf93611be73e02de5c28264ae7078fe9798219d2673ba5ab825eddea50c2d6bf94aaf74a3693f3dfb58118a38e16ffe9ccbf0d8788151
- SSDEEP
  
  3072:lOLyMIlnd1n/OSvKnYKAIl0XUbkxdFDkU0Ke6CZ5NfdjW:ILHIFdFOdAIl+Ubk2Uze3dj
Score

10^/10

azorult infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

azorultinfostealertrojan

behavioral2

azorultinfostealertrojan