purecrypter | cf4ae5098d68cacdc792f21502212cff6f9e543682580b722b05fa90d30d5620 | Triage

Sharing

General

Target

c166be4fd3b26883ae35f7f1d8b51459.bin
Size

22KB
Sample

230723-cncnnsda64
MD5

910c8feb8241e376c2d4c87903a3dfd7
SHA1

d91feb998124c5259f98c501bf6787a76e739376
SHA256

cf4ae5098d68cacdc792f21502212cff6f9e543682580b722b05fa90d30d5620
SHA512

f757be97f818597b672d2e408d24967f1593b51a6e537f0287594669390c87b44b6247e5713f96f198caecb2f8dd5bfde99fb2c311989a952d3e4f3b815f3e49
SSDEEP

384:uObgd7h9lE4n+3gQaRej1o3zbH5tTcP7EbHouwOacDrSXjybmRx7gcnmf1r5rDFd:uObg7ERWN3rcjKIuwOjyj7Rmf1rhDW3w

Score

10^/10

purecrypter downloader loader

Malware Config

Extracted

Family

purecrypter

C2

https://files.catbox.moe/730d8u.wav

Targets

- Target
  
  Payment_Confirmation_230721pdf.exe
- Size
  
  53KB
- MD5
  
  4feef1aae6a0fec7806c2c0fbbee297e
- SHA1
  
  2be923d8dc05abe584621a4bff5c9178cf43777a
- SHA256
  
  e03f7cbee9ba8443d200f1bcc47101185dcdc27b965b0ce9b650a0aae4c40492
- SHA512
  
  44c8d14b4543909e5f1451f25330f8d7a9679d12b2eaefab2c21dd8cf1d41491d1e41b00230a4cf36b5be63ba1b9721ce8c4ee07d0f802b5c284c6c655661a31
- SSDEEP
  
  768:qgyiRquYaRH/+MSlKphRUsSnDK3EaC8l2bP3SScNY8nfRqTuM+1+S:q1iRTYqNuKZUsgDK3EaqL36G8ETugS
Score

10^/10

purecrypter downloader loader
- PureCrypter
  PureCrypter is a .NET malware loader first seen in early 2021.
  loader downloader purecrypter
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

purecrypterdownloaderloader

behavioral2

purecrypterdownloaderloader