azorult | ab5745159087ace784e77631a7011f4cc4b392606beae4de10e4040f945a2b1c | Triage

Sharing

General

Target

xEVMPSIK.bin.zip
Size

59KB
Sample

240817-qvgsvsxhkh
MD5

c529c832a91b3441c1061a8206268865
SHA1

64c93ca8fc88c8a3503fce10c56b0ef5a1a81f7e
SHA256

ab5745159087ace784e77631a7011f4cc4b392606beae4de10e4040f945a2b1c
SHA512

cb3115082fb6c1ae48a9513746402e4ffd901af65e42b10c48f0c740c90aaf621b6ff731e6d47a5e2a862fa8d8e087f8a79e4c115915eb99cd4ee6dd1d3bfd93
SSDEEP

1536:abHZFfUJSPIWWjRlgXHw6qRf8yepJVEJU47kjqFx/:a16gPIWk6qZepHEJIgx/

Score

10^/10

azorult discovery infostealer trojan

Malware Config

Extracted

Family

azorult

C2

http://195.245.112.115/index.php

Targets

- Target
  
  xEVMPSIK.bin
- Size
  
  112KB
- MD5
  
  c5ace75580275c65cb6691c6ccb008a5
- SHA1
  
  ed1339552e05b19b8c102b08622748eb4a691d4a
- SHA256
  
  d110ab80a498526c2ea7c83cc8fb799887d49b50c2e7d7ea6e28654cc9d511e8
- SHA512
  
  60d7933ceb1f876fbac26fb2acb851c88cdae3d20bf4cf9d3cede2668d11ede083df552bb28ec69267792e749166cec0a92efa86449ca5e44111657412839456
- SSDEEP
  
  3072:KExRaQ6raoCoCyz6/mqv1JR+yBtGOeheWginyq:faO1tme+1wint
Score

10^/10

azorult discovery infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

azorultdiscoveryinfostealertrojan

behavioral2

azorultdiscoveryinfostealertrojan

behavioral3

azorultdiscoveryinfostealertrojan

behavioral4

azorultdiscoveryinfostealertrojan