azorult | 0fa40fd927ec6928a9f9b246dd2b58266875f33cc7dc6eb7bfdad412f96b1c6a | Triage

Submit
Reports

Overview

overview

Static

static

7

12ef629e17...18.exe

windows7-x64

12ef629e17...18.exe

windows10-2004-x64

7

Sharing

General

Target

12ef629e17e5374cdf8947717ce46634_JaffaCakes118
Size

521KB
Sample

240504-qpvgrsab32
MD5

12ef629e17e5374cdf8947717ce46634
SHA1

6c230f4797366af5ec794cab87e883b6679b55a7
SHA256

0fa40fd927ec6928a9f9b246dd2b58266875f33cc7dc6eb7bfdad412f96b1c6a
SHA512

18fb2df4b12e4f47a7b4e3ed4c65884c7d58ea0ccc0befcd97f42aa669ebb51592e6654cd6e0318203d4a836f91ab25d6243c645edfe3a95429d1288afb7ad53
SSDEEP

3072:SzbewBG1ytoE+9O4Lp8RkPgsdkvU4mXhZSP8Npe6NkkgC1kzpiRpJ:CohE2LuRkxHXvi8negkkEViR

Score

10^/10

azorult infostealer trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

12ef629e17e5374cdf8947717ce46634_JaffaCakes118.exe

Resource

win7-20240215-en

azorult infostealer trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

12ef629e17e5374cdf8947717ce46634_JaffaCakes118.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

azorult

C2

http://fresfolkrules.ga/deepwater/32/index.php

Targets

- Target
  
  12ef629e17e5374cdf8947717ce46634_JaffaCakes118
- Size
  
  521KB
- MD5
  
  12ef629e17e5374cdf8947717ce46634
- SHA1
  
  6c230f4797366af5ec794cab87e883b6679b55a7
- SHA256
  
  0fa40fd927ec6928a9f9b246dd2b58266875f33cc7dc6eb7bfdad412f96b1c6a
- SHA512
  
  18fb2df4b12e4f47a7b4e3ed4c65884c7d58ea0ccc0befcd97f42aa669ebb51592e6654cd6e0318203d4a836f91ab25d6243c645edfe3a95429d1288afb7ad53
- SSDEEP
  
  3072:SzbewBG1ytoE+9O4Lp8RkPgsdkvU4mXhZSP8Npe6NkkgC1kzpiRpJ:CohE2LuRkxHXvi8negkkEViR
Score

10^/10

azorult infostealer trojan upx
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

azorultinfostealertrojanupx

behavioral2

© 2018-2025

Terms | Privacy