Overview

overview

10

Static

static

1

Document SWIFT.exe

windows7-x64

10

Document SWIFT.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Document SWIFT.exe

  • Size

    1.1MB

  • Sample

    231213-bcczmafce7

  • MD5

    5f928d186645503a400b6d5c5bc04a66

  • SHA1

    8521d137aa64d3781019d3e96c7a9d35ffd27fc8

  • SHA256

    8c0204e55e1389338cabb0b8e552ceb382667715d9b97110c6fbe756bbb2f98a

  • SHA512

    54f9f6f78ed3c43920ac76d158e4e871f9fcaeb0a4928f1f05f5fad90b053d66689a0473aefce2448b45e937108b455af0870272e7243f3c19fceaabf4186538

  • SSDEEP

    24576:MZnDsr63UOeIqFq+o8uvxKXrsWGAzqZ003A2AKCfrm16vY1w4nY6ugQi3:DrAUB/UvYXX1qZD6KArm2Y1w4nY6yi3

Score
10/10
azorultinfostealertrojan

Malware Config

Targets

    • Target

      Document SWIFT.exe

    • Size

      1.1MB

    • MD5

      5f928d186645503a400b6d5c5bc04a66

    • SHA1

      8521d137aa64d3781019d3e96c7a9d35ffd27fc8

    • SHA256

      8c0204e55e1389338cabb0b8e552ceb382667715d9b97110c6fbe756bbb2f98a

    • SHA512

      54f9f6f78ed3c43920ac76d158e4e871f9fcaeb0a4928f1f05f5fad90b053d66689a0473aefce2448b45e937108b455af0870272e7243f3c19fceaabf4186538

    • SSDEEP

      24576:MZnDsr63UOeIqFq+o8uvxKXrsWGAzqZ003A2AKCfrm16vY1w4nY6ugQi3:DrAUB/UvYXX1qZD6KArm2Y1w4nY6yi3

    Score
    10/10
    azorultinfostealertrojan

    • Azorult

      An information stealer that was first discovered in 2016, targeting browsing history and passwords.

      trojaninfostealerazorult

    • Suspicious use of NtCreateThreadExHideFromDebugger

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks