azorult | 2bdf9811d9fdc64acc21f88900c8f8054c900c009a98bb1efed40f64be259115 | Triage

Submit
Reports

Overview

overview

Static

static

3

54b1ee633e...18.exe

windows7-x64

54b1ee633e...18.exe

windows10-2004-x64

Sharing

General

Target

54b1ee633e49544e5bb6099dd576663e_JaffaCakes118
Size

420KB
Sample

240518-pjl3rsbc86
MD5

54b1ee633e49544e5bb6099dd576663e
SHA1

0c844bf459777740a4d7fa71510da4d5d6ee1530
SHA256

2bdf9811d9fdc64acc21f88900c8f8054c900c009a98bb1efed40f64be259115
SHA512

2c0bfebd90c434f5b710eb27d2833f0c3010a6c301b8941de825e44d8a2420c53d086d794e39a9d3bbeca450111f59fd6e59895694552a8ee23adcadad0531ac
SSDEEP

6144:Ft7UUAVmnPbDLl9QsHvcrEi78gJ9KEXV4/lX:rUUEmXLl9QsGQE9KEFml

Score

10^/10

azorult infostealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

54b1ee633e49544e5bb6099dd576663e_JaffaCakes118.exe

Resource

win7-20240221-en

azorult infostealer trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

54b1ee633e49544e5bb6099dd576663e_JaffaCakes118.exe

Resource

win10v2004-20240508-en

azorult infostealer trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

azorult

C2

http://gebbatrip.club/index.php

Targets

- Target
  
  54b1ee633e49544e5bb6099dd576663e_JaffaCakes118
- Size
  
  420KB
- MD5
  
  54b1ee633e49544e5bb6099dd576663e
- SHA1
  
  0c844bf459777740a4d7fa71510da4d5d6ee1530
- SHA256
  
  2bdf9811d9fdc64acc21f88900c8f8054c900c009a98bb1efed40f64be259115
- SHA512
  
  2c0bfebd90c434f5b710eb27d2833f0c3010a6c301b8941de825e44d8a2420c53d086d794e39a9d3bbeca450111f59fd6e59895694552a8ee23adcadad0531ac
- SSDEEP
  
  6144:Ft7UUAVmnPbDLl9QsHvcrEi78gJ9KEXV4/lX:rUUEmXLl9QsGQE9KEFml
Score

10^/10

azorult infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

azorultinfostealertrojan

behavioral2

azorultinfostealertrojan

© 2018-2025

Terms | Privacy