purecrypter | 77a8b71720f794c84b7e4c49c6a6f977[.]bin

General

Target

77a8b71720f794c84b7e4c49c6a6f977.bin
Size

3KB
MD5

792b743a194dd032f934bb638679c564
SHA1

aeac2e8a3e2865c9825859c6ea6a818e306d829c
SHA256

02be4d86bad6ab70e250293772679c0dfc8f44396aad5e2a86d090a7241f956a
SHA512

a61191efbc1c2d923b0179fc731afb43fb3e6c2410108f99b31181729b636b2cef810862d755aaf43b384ac8ac2ff8c6ba86c2300a6538ffd34feb8bca3f2b63

Score

10^/10

purecrypter

Family

purecrypter

C2

https://360.asesoriaenfarmacias.com/Rwnpjrqq.vdf

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Quotation V111K2V.exe

77a8b71720f794c84b7e4c49c6a6f977.bin
.zip

Password: infected
c34483b362f0d52fa95bcf250718a6dc838268e9224e87411c9926048319cc33.img
.iso

Password: infected
Quotation V111K2V.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ