azorult | a59841af9e244e406f2956e0a81a9ccb422ad6545349617c6b63c47abb2ba3a5 | Triage

Sharing

General

Target

cfed09d803a0419e83f5dee78673a441_JaffaCakes118
Size

208KB
Sample

240906-tklwlswcrf
MD5

cfed09d803a0419e83f5dee78673a441
SHA1

08097c64381d4814b498651ea6f199c3088643c7
SHA256

a59841af9e244e406f2956e0a81a9ccb422ad6545349617c6b63c47abb2ba3a5
SHA512

56791b0ff01d0c5229c9107b68acc2a0b8508cc934f6c5a8a8507be500438e41697842e3d9d8bff966fa09056de1b8c90be270d3f9bd92deb3ae88b3a2f95226
SSDEEP

3072:5CmQHftlbKLiUEMSkNSaN/XzgGf8aXpjR5KiXHtIz:ZQHL+L5EhOSO/XzgGUu/Ny

Score

10^/10

azorult discovery infostealer trojan

Malware Config

Extracted

Family

azorult

C2

http://admin.svapofit.com/azs/index.php

Targets

- Target
  
  cfed09d803a0419e83f5dee78673a441_JaffaCakes118
- Size
  
  208KB
- MD5
  
  cfed09d803a0419e83f5dee78673a441
- SHA1
  
  08097c64381d4814b498651ea6f199c3088643c7
- SHA256
  
  a59841af9e244e406f2956e0a81a9ccb422ad6545349617c6b63c47abb2ba3a5
- SHA512
  
  56791b0ff01d0c5229c9107b68acc2a0b8508cc934f6c5a8a8507be500438e41697842e3d9d8bff966fa09056de1b8c90be270d3f9bd92deb3ae88b3a2f95226
- SSDEEP
  
  3072:5CmQHftlbKLiUEMSkNSaN/XzgGf8aXpjR5KiXHtIz:ZQHL+L5EhOSO/XzgGUu/Ny
Score

10^/10

azorult discovery infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

azorultdiscoveryinfostealertrojan

behavioral2