Overview

overview

10

Static

static

10

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f3aba98cd53c71d4d5e917e9e1fd43e3db61b46c59610eefba45b8c81f3e68ff

  • Size

    3.0MB

  • Sample

    240713-nvrxqa1fnf

  • MD5

    f91db36135a994d00b92ec2b1be0fca9

  • SHA1

    4219943320a7f291a4da37aed89bce5a4a09e250

  • SHA256

    f3aba98cd53c71d4d5e917e9e1fd43e3db61b46c59610eefba45b8c81f3e68ff

  • SHA512

    48ffd9c8af8019e9e3ae2a5bd479d5eb7ff815e7b9b8bf3887d8528a6e796af7d0ab17f300afadaf24cc24a2fdffd2dff73ba2062903a7f8df40c5e5521f0db9

  • SSDEEP

    49152:mwOiIXJQSGd77+om1nVr6AZxPbxlhqhMKucCuTOgVrp7vRo6JE3CGiiFlENhh4xM:mT5af+tF6UxPFlQ+KdnESGNFe4xLafv

Score
10/10
purelogstealerpersistencestealer

Malware Config

Targets

    • Target

      f3aba98cd53c71d4d5e917e9e1fd43e3db61b46c59610eefba45b8c81f3e68ff

    • Size

      3.0MB

    • MD5

      f91db36135a994d00b92ec2b1be0fca9

    • SHA1

      4219943320a7f291a4da37aed89bce5a4a09e250

    • SHA256

      f3aba98cd53c71d4d5e917e9e1fd43e3db61b46c59610eefba45b8c81f3e68ff

    • SHA512

      48ffd9c8af8019e9e3ae2a5bd479d5eb7ff815e7b9b8bf3887d8528a6e796af7d0ab17f300afadaf24cc24a2fdffd2dff73ba2062903a7f8df40c5e5521f0db9

    • SSDEEP

      49152:mwOiIXJQSGd77+om1nVr6AZxPbxlhqhMKucCuTOgVrp7vRo6JE3CGiiFlENhh4xM:mT5af+tF6UxPFlQ+KdnESGNFe4xLafv

    Score
    10/10
    purelogstealerpersistencestealer

    • PureLog Stealer

      PureLog Stealer is an infostealer written in C#.

      stealerpurelogstealer

    • PureLog Stealer payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks