purecrypter | 2a996bd059847ffef30bc349b1c22132a386981abdf40d4d8484de21d0370a74 | Triage

Sharing

General

Target

2a996bd059847ffef30bc349b1c22132a386981abdf40d4d8484de21d0370a74
Size

1.2MB
MD5

e81a9f67dbf28ddd68b5278ea96c397f
SHA1

5651fa078ddae67017f84676cabdc518058acd11
SHA256

2a996bd059847ffef30bc349b1c22132a386981abdf40d4d8484de21d0370a74
SHA512

a473d9c01230807fba0a35db7cb9550c8b2af9bbaa81d34e337092a9fe18095079d9a39213dd66f1997a00a1b1a3ae3619553f39592bffaecd73ceb82b5ddcb4
SSDEEP

384:Z8TJWPGVN7vW2AKzfqtCjVE8Oe9+XDunbDG3WqylW:KTJW4nTqWEDDunXGu

Score

10^/10

purecrypter

Malware Config

Extracted

Family

purecrypter

C2

https://ipedpk.com/Trashh/Ckklfnqgat.mp4

Signatures

Purecrypter family
purecrypter

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/New_June_Inquiry_List_pdf.exe

Files

2a996bd059847ffef30bc349b1c22132a386981abdf40d4d8484de21d0370a74
.iso
out.iso
.iso
New_June_Inquiry_List_pdf.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ