azorult | dd8069b91ca5bc02b667408ef5830672dcbcca53cf508c39352219ae94b84017 | Triage

Sharing

General

Target

adc0d78898580e86dd1d0e60e65d0cfd_JaffaCakes118
Size

112KB
Sample

241128-2ab8esymam
MD5

adc0d78898580e86dd1d0e60e65d0cfd
SHA1

d07674f7e592d5403ce38ea7516b74c51c042fca
SHA256

dd8069b91ca5bc02b667408ef5830672dcbcca53cf508c39352219ae94b84017
SHA512

66273ede98e3cffad772589ef629b82f82aee731c56f3b99429ccdad76aa51a862045e14fe4b5626c87a027163c0e91974cffaf633beb34bc57732c0e24e83b3
SSDEEP

3072:tuOSXpMx7ZAlHsbfUkolNGti7lfqeSxM3SpyEY3E/nxg/:Zzx7ZApszolIo7lf/ipT/n

Score

10^/10

azorult discovery infostealer trojan

Malware Config

Extracted

Family

azorult

C2

http://nikoskuolis.com/elb/hp

Targets

- Target
  
  adc0d78898580e86dd1d0e60e65d0cfd_JaffaCakes118
- Size
  
  112KB
- MD5
  
  adc0d78898580e86dd1d0e60e65d0cfd
- SHA1
  
  d07674f7e592d5403ce38ea7516b74c51c042fca
- SHA256
  
  dd8069b91ca5bc02b667408ef5830672dcbcca53cf508c39352219ae94b84017
- SHA512
  
  66273ede98e3cffad772589ef629b82f82aee731c56f3b99429ccdad76aa51a862045e14fe4b5626c87a027163c0e91974cffaf633beb34bc57732c0e24e83b3
- SSDEEP
  
  3072:tuOSXpMx7ZAlHsbfUkolNGti7lfqeSxM3SpyEY3E/nxg/:Zzx7ZApszolIo7lf/ipT/n
Score

10^/10

azorult discovery infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- Azorult family
  azorult
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

azorultdiscoveryinfostealertrojan

behavioral2

azorultdiscoveryinfostealertrojan