General
-
Target
Iz{$_owt)[.exe
-
Size
717KB
-
Sample
240216-x6mxksfc58
-
MD5
ec88a4c1dcfb3861f6c9c364deeabd94
-
SHA1
ed0d81e041345ddc9ff9fea8bad197ee1a66fe82
-
SHA256
23722503bdcc20ab9e6482bb2d3e92e50b13443799f361975bb36a91f0eeb895
-
SHA512
81f6ed64f54778aa59afbc515dd6a40b5acac397348801dadbddcfdc15711144c3085e08099ba2a28a98055039916ade0e0cde1ea6fcf78b1f5962e8651609a7
-
SSDEEP
12288:rtHCL6YFXDk8fwYXzlRLf3AM+lsEttF2s9NgztG2Qk/sxJhT:xHq6Y5hRLsGEvF2sOtGkIh
Static task
static1
Behavioral task
behavioral1
Sample
Iz{$_owt)[.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
Iz{$_owt)[.exe
Resource
win10v2004-20231215-en
Malware Config
Extracted
azorult
http://195.245.112.115/index.php
Targets
-
-
Target
Iz{$_owt)[.exe
-
Size
717KB
-
MD5
ec88a4c1dcfb3861f6c9c364deeabd94
-
SHA1
ed0d81e041345ddc9ff9fea8bad197ee1a66fe82
-
SHA256
23722503bdcc20ab9e6482bb2d3e92e50b13443799f361975bb36a91f0eeb895
-
SHA512
81f6ed64f54778aa59afbc515dd6a40b5acac397348801dadbddcfdc15711144c3085e08099ba2a28a98055039916ade0e0cde1ea6fcf78b1f5962e8651609a7
-
SSDEEP
12288:rtHCL6YFXDk8fwYXzlRLf3AM+lsEttF2s9NgztG2Qk/sxJhT:xHq6Y5hRLsGEvF2sOtGkIh
Score10/10-
Azorult
An information stealer that was first discovered in 2016, targeting browsing history and passwords.
-
Detect ZGRat V1
-
Suspicious use of SetThreadContext
-