azorult | 51576193c87090f830b90827e9266565e9b7dd293d4818ea92e9538d68386e2b | Triage

Sharing

General

Target

db3cb1ca9eaff73d31715d03c0bffba2_JaffaCakes118
Size

322KB
Sample

241209-ygkatsynbw
MD5

db3cb1ca9eaff73d31715d03c0bffba2
SHA1

71fdbeb59f7d04e777723a72814ee1d3a2f4d1c8
SHA256

51576193c87090f830b90827e9266565e9b7dd293d4818ea92e9538d68386e2b
SHA512

a83132f7567bc8d4fe95a70625ce9c55401cd5ec23abbafe5775caee01914187a0b10794fa244e0fe197c99c1f7e93d752683b2f2f9c1e96fb73e462d40cb9ca
SSDEEP

6144:TA5wtxEvZVIyXasfKolvHdLYHrjWcm8PxS1V9Hsa7p5w:YwtaX1aqZldLYHmcPc9p7py

Score

10^/10

azorult discovery infostealer trojan

Malware Config

Extracted

Family

azorult

C2

http://203.159.80.136/nx/index.php

Targets

- Target
  
  db3cb1ca9eaff73d31715d03c0bffba2_JaffaCakes118
- Size
  
  322KB
- MD5
  
  db3cb1ca9eaff73d31715d03c0bffba2
- SHA1
  
  71fdbeb59f7d04e777723a72814ee1d3a2f4d1c8
- SHA256
  
  51576193c87090f830b90827e9266565e9b7dd293d4818ea92e9538d68386e2b
- SHA512
  
  a83132f7567bc8d4fe95a70625ce9c55401cd5ec23abbafe5775caee01914187a0b10794fa244e0fe197c99c1f7e93d752683b2f2f9c1e96fb73e462d40cb9ca
- SSDEEP
  
  6144:TA5wtxEvZVIyXasfKolvHdLYHrjWcm8PxS1V9Hsa7p5w:YwtaX1aqZldLYHmcPc9p7py
Score

10^/10

azorult discovery infostealer trojan
- Azorult
  An information stealer that was first discovered in 2016, targeting browsing history and passwords.
  trojan infostealer azorult
- Azorult family
  azorult
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

azorultdiscoveryinfostealertrojan

behavioral2

azorultdiscoveryinfostealertrojan