purelogstealer | 9daffaea889ac9a0a94e711c815ef8f8d17878c00dc802033300e46f35ccbc29 | Triage

Submit
Reports

Overview

overview

Static

static

d8506a1a17...0N.exe

windows7-x64

d8506a1a17...0N.exe

windows10-2004-x64

Sharing

General

Target

d8506a1a17c1b7452fc9e94ce5568900N.exe
Size

5.3MB
Sample

240806-w7g72swgjq
MD5

d8506a1a17c1b7452fc9e94ce5568900
SHA1

d1d281538ddd3cc45a6bb29380dc1d7330e4bd0d
SHA256

9daffaea889ac9a0a94e711c815ef8f8d17878c00dc802033300e46f35ccbc29
SHA512

0b8d671333d70f341cec6eeb8cfad1169251980305b19b31f96345f8c797fd0dd97d4b7fd40ad28412e1340829a2c82f253577a26403ea567cd2cb1dd6ba0e9b
SSDEEP

98304:Q3QwuwsuAyobBzVlwVNwo7MhtCzLY8QcTEcX/ssSR/UoUSAKBasi930z:kQ1Hj1RlwPwo7MhtCA8QBskVMoU0Ba72

Score

10^/10

purelogstealer credential_access discovery stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

d8506a1a17c1b7452fc9e94ce5568900N.exe

Resource

win7-20240729-en

purelogstealer credential_access discovery stealer

windows7-x64

10 signatures

120 seconds

Behavioral task

behavioral2

Sample

d8506a1a17c1b7452fc9e94ce5568900N.exe

Resource

win10v2004-20240802-en

purelogstealer discovery stealer

windows10-2004-x64

7 signatures

120 seconds

Malware Config

Targets

- Target
  
  d8506a1a17c1b7452fc9e94ce5568900N.exe
- Size
  
  5.3MB
- MD5
  
  d8506a1a17c1b7452fc9e94ce5568900
- SHA1
  
  d1d281538ddd3cc45a6bb29380dc1d7330e4bd0d
- SHA256
  
  9daffaea889ac9a0a94e711c815ef8f8d17878c00dc802033300e46f35ccbc29
- SHA512
  
  0b8d671333d70f341cec6eeb8cfad1169251980305b19b31f96345f8c797fd0dd97d4b7fd40ad28412e1340829a2c82f253577a26403ea567cd2cb1dd6ba0e9b
- SSDEEP
  
  98304:Q3QwuwsuAyobBzVlwVNwo7MhtCzLY8QcTEcX/ssSR/UoUSAKBasi930z:kQ1Hj1RlwPwo7MhtCA8QBskVMoU0Ba72
Score

10^/10

purelogstealer credential_access discovery stealer
- PureLog Stealer
  PureLog Stealer is an infostealer written in C#.
  stealer purelogstealer
- PureLog Stealer payload
- Unsecured Credentials: Credentials In Files
  Steal credentials from unsecured files.
  credential_access stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

purelogstealercredential_accessdiscoverystealer

behavioral2

purelogstealerdiscoverystealer

© 2018-2024

Terms | Privacy