purecrypter | OSTOTILAUSPYYNTÖ _0932[.]exe | Triage

Sharing

General

Target

OSTOTILAUSPYYNTÖ _0932.exe
Size

6KB
MD5

8402ed726c49025989f98d23ce9d7e3e
SHA1

e5784d2999ab073773b65e7d3a10ab2bb3460ff0
SHA256

5780663f3e32e0308caa2cc657ccdcaadf393f22d2c1c3c1f5afa9f55aa136bb
SHA512

208fdd79dd0ff0a61a0dccc80ea718b6f6ef18151104d3d74753035e7ed2844facc07df1605af42dfbb6631971eff6e5ec4cecbbe42f93bef0e3c75d5c942ebc
SSDEEP

96:gzTFJVQ7mAK9KgeRZskYuIH7dYYyWwRkvPzNt:gHa7m79ETSuIH7dYYyYR

Score

10^/10

purecrypter

Malware Config

Extracted

Family

purecrypter

C2

https://files.catbox.moe/6dlgj3.mp4

Signatures

Purecrypter family
purecrypter

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
OSTOTILAUSPYYNTÖ _0932.exe

Files

OSTOTILAUSPYYNTÖ _0932.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ