Overview

overview

10

Static

static

10

0d651f4983...18.exe

windows7-x64

10

0d651f4983...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0d651f4983af1acac13a75afe35a37f6_JaffaCakes118

  • Size

    186KB

  • Sample

    241003-cdg6eaydqn

  • MD5

    0d651f4983af1acac13a75afe35a37f6

  • SHA1

    1dfc88725586fdbe4011622e35e08b109b1ec230

  • SHA256

    ef43ed5973818d582ba04e996418f3927fe48a602a17fb2f81a0615e738b31ea

  • SHA512

    f47bdba0103ee36a1f30905ae36ba8d0012e5afbd160296477e0b4d5cc0ed9b225172cdc7cc027600eebf002d6c26494674993ad43f9ddaf43508fd8703aa416

  • SSDEEP

    768:boNvFJ2M99CKKFObL0wL81g30Ni93w6Y/KMNabGJLyRhZtnZE4uwyu0:bU399CzqCg30gC6Y/KMNabGJLyRhbRU

Score
10/10
purecrypterdiscoverydownloaderloader

Malware Config

Extracted

Family

purecrypter

C2

https://store2.gofile.io/download/6de6793b-1d8c-4ad4-adfe-8e28f421bbe6/Ysyxiz.dll

Targets

    • Target

      0d651f4983af1acac13a75afe35a37f6_JaffaCakes118

    • Size

      186KB

    • MD5

      0d651f4983af1acac13a75afe35a37f6

    • SHA1

      1dfc88725586fdbe4011622e35e08b109b1ec230

    • SHA256

      ef43ed5973818d582ba04e996418f3927fe48a602a17fb2f81a0615e738b31ea

    • SHA512

      f47bdba0103ee36a1f30905ae36ba8d0012e5afbd160296477e0b4d5cc0ed9b225172cdc7cc027600eebf002d6c26494674993ad43f9ddaf43508fd8703aa416

    • SSDEEP

      768:boNvFJ2M99CKKFObL0wL81g30Ni93w6Y/KMNabGJLyRhZtnZE4uwyu0:bU399CzqCg30gC6Y/KMNabGJLyRhbRU

    Score
    10/10
    purecrypterdiscoverydownloaderloader

    • PureCrypter

      PureCrypter is a .NET malware loader first seen in early 2021.

      loaderdownloaderpurecrypter

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks