azorult | 68bb910965e8cb69b2e757bdc5818db79426d79db3bcb33e8873060353fbbb4c | Triage

Submit
Reports

Overview

overview

Static

static

3

75fe564730...18.exe

windows7-x64

1

75fe564730...18.exe

windows10-2004-x64

Sharing

General

Target

75fe564730b0314934765a57b4b0f293_JaffaCakes118
Size

554KB
Sample

240526-ta7ekace74
MD5

75fe564730b0314934765a57b4b0f293
SHA1

1b087ca7247f7edc9699ff9a654b03185f035a32
SHA256

68bb910965e8cb69b2e757bdc5818db79426d79db3bcb33e8873060353fbbb4c
SHA512

430c2c1a16fa781ce122303fce46b082bd0a25e5ebda95a19afb6fdea14aff4e77eff91c63e9a16e7b206be7c711bd2a7fb34810fd7a6e278a3752909a701232
SSDEEP

12288:EzrE5jpAL/eFKgeiPyYUCoJlVdPX54TKrz:orENpsBLZYbexlz

Score

10^/10

azorult infostealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

75fe564730b0314934765a57b4b0f293_JaffaCakes118.exe

Resource

win7-20240221-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

75fe564730b0314934765a57b4b0f293_JaffaCakes118.exe

Resource

win10v2004-20240508-en

azorult infostealer trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

azorult

C2

http://www.exeobmens.com/index.php

Targets

- Target
  
  75fe564730b0314934765a57b4b0f293_JaffaCakes118
- Size
  
  554KB
- MD5
  
  75fe564730b0314934765a57b4b0f293
- SHA1
  
  1b087ca7247f7edc9699ff9a654b03185f035a32
- SHA256
  
  68bb910965e8cb69b2e757bdc5818db79426d79db3bcb33e8873060353fbbb4c
- SHA512
  
  430c2c1a16fa781ce122303fce46b082bd0a25e5ebda95a19afb6fdea14aff4e77eff91c63e9a16e7b206be7c711bd2a7fb34810fd7a6e278a3752909a701232
- SSDEEP
  
  12288:EzrE5jpAL/eFKgeiPyYUCoJlVdPX54TKrz:orENpsBLZYbexlz
Score

10^/10

azorult infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

azorultinfostealertrojan

© 2018-2024

Terms | Privacy