Overview

overview

10

Static

static

1

6cf617e5-6...04.eml

windows7-x64

10

6cf617e5-6...04.eml

windows10-2004-x64

3

email-html-2.txt

windows7-x64

1

email-html-2.txt

windows10-2004-x64

1

email-plain-1.txt

windows7-x64

1

email-plain-1.txt

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6cf617e5-6740-7e77-01ab-7e98d6d08004.eml

  • Size

    19KB

  • Sample

    240814-w1s1za1gnq

  • MD5

    dad930a4b47abd1c95d90e5b431a5c7e

  • SHA1

    48f0a7d2f0b01f63ba50e90c7c48bfa13ad4cc53

  • SHA256

    8e6780e2ab7c22e0e07f317862a6f8a587b9763ba9a67e0cc4f610f8d78a593e

  • SHA512

    add2093de80c256d7cba9fed3e655c4223a1d1d357c9ec2505dc15afbabc5ed1140c33564e5b071f77bf4f895cbd8229ae117e05f8bbefcdab19710f861b9528

  • SSDEEP

    384:M+91IKpCODpm/IlisX5mRPNUlf4xx3Niu9ZvCy48n:M+92KpCODp6YJX5qNUf451/6/8n

Score
10/10
purelogstealerdiscoverystealer

Malware Config

Targets

    • Target

      6cf617e5-6740-7e77-01ab-7e98d6d08004.eml

    • Size

      19KB

    • MD5

      dad930a4b47abd1c95d90e5b431a5c7e

    • SHA1

      48f0a7d2f0b01f63ba50e90c7c48bfa13ad4cc53

    • SHA256

      8e6780e2ab7c22e0e07f317862a6f8a587b9763ba9a67e0cc4f610f8d78a593e

    • SHA512

      add2093de80c256d7cba9fed3e655c4223a1d1d357c9ec2505dc15afbabc5ed1140c33564e5b071f77bf4f895cbd8229ae117e05f8bbefcdab19710f861b9528

    • SSDEEP

      384:M+91IKpCODpm/IlisX5mRPNUlf4xx3Niu9ZvCy48n:M+92KpCODp6YJX5qNUf451/6/8n

    Score
    10/10
    purelogstealerdiscoverystealer

    • PureLog Stealer

      PureLog Stealer is an infostealer written in C#.

      stealerpurelogstealer

    • PureLog Stealer payload

    • Legitimate hosting services abused for malware hosting/C2

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      email-html-2.txt

    • Size

      7KB

    • MD5

      7b863d477b0385b8abb113350e57e01d

    • SHA1

      93071977b7cab343abba66ab1dfe9b59d154e94f

    • SHA256

      a9b74127bd4beec14a388975e4d92f72a8cdb3028710a18051d52f3c950cffd0

    • SHA512

      1b8cf4c66cb8fa5e4217ae6302d678ee4990a8ee45d7f776b2eb71025d69827e5fc0946e9caf2bc417164d69a12cb1a88028dd24928e93bfe385fcdb724e03f0

    • SSDEEP

      96:/jhxGx0xwx/A5OCMKxadxbnxsRxOSnShhGoMbUScHZzStH6zSQBzSuwrqezSH4k5:cCc8SGFU3VvvsGGW8PETZaK

    Score
    1/10
    behavioral3behavioral4

    • Target

      email-plain-1.txt

    • Size

      1KB

    • MD5

      08283f61cbf4ccb9ed8ca0aefc0f19eb

    • SHA1

      7f6cc20bde4562ffa9125debf530696c4500f908

    • SHA256

      587f70f367717d686c6224a10b4600a68121070fa635c541d9d98aa51e7ad01d

    • SHA512

      c196954977832cbd6d80185ba5804608f102b96dee1e75827f85e50a1596a0472756140b38a20a981cc9e94cbdcec40eb0ff755169714367b6719081f66a2ace

    Score
    1/10
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks