Overview

overview

10

Static

static

1

URLScan

urlscan

1

https://samples.vx-u...

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://samples.vx-underground.org/Samples/Families/Azorult/571de4698edff95c328d3521b11e800a3b9659ad55281dd7729b2ce2210ac931.7z

  • Sample

    240311-smvqvsdh9s

Score
10/10
azorultinfostealertrojanvmprotect

Malware Config

Extracted

Family

azorult

C2

http://185.189.151.50/7yhnm434/index.php

Targets

    • Target

      https://samples.vx-underground.org/Samples/Families/Azorult/571de4698edff95c328d3521b11e800a3b9659ad55281dd7729b2ce2210ac931.7z

    Score
    10/10
    azorultinfostealertrojanvmprotect

    • Azorult

      An information stealer that was first discovered in 2016, targeting browsing history and passwords.

      trojaninfostealerazorult

    • Executes dropped EXE

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks