purecrypter | 41ae5c5fe7e4c5f343be8badbd4d79ae[.]dll | Triage

Sharing

General

Target

41ae5c5fe7e4c5f343be8badbd4d79ae.dll
Size

2.5MB
MD5

fdd2f22f85ac82786f7614f0f9bda182
SHA1

77045ee16f7e86660b33551ae5c555c2837d0270
SHA256

2ca156b0edea7b919b4c5e87ea24609b57c730b16a4303baf8946ebc02f7edaa
SHA512

fcca958bc4f16b0d7c984c15a151df12723b664d8e67cb89de1aa1e56401d580e7157e0d880943c6aabf354197bce9693fe8e34bf17a5d948ec61249037b4fc6
SSDEEP

49152:35cnHhlTkbp/673C21/ibgEFgGlzQfQiyqCTyDbsUei:35cnHhlTkbp/673C21/+uki2obsUB

Score

10^/10

loader purecrypter

Malware Config

Signatures

Detect PureCrypter injector 1 IoCs

resource	yara_rule
sample	family_purecrypter

Purecrypter family
purecrypter

Files

41ae5c5fe7e4c5f343be8badbd4d79ae.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ