purecrypter | bf6aabd3c8fc42049fc6435f2432c97a8e8aa3258e0591b3756d5d84df2b3e6c | Triage

Sharing

General

Target

bf6aabd3c8fc42049fc6435f2432c97a8e8aa3258e0591b3756d5d84df2b3e6c.exe
Size

12KB
Sample

250110-eg1g9s1may
MD5

d165a97582770739cc7b847e1b5dbeef
SHA1

fa06c1014fa0810e3ea2cbc661e9bb443461ad9e
SHA256

bf6aabd3c8fc42049fc6435f2432c97a8e8aa3258e0591b3756d5d84df2b3e6c
SHA512

2e4f226bf38340ea356c6003549bccfca562247375475b82e92ba97d9f7969fc795e2a3134dbcb0aecec2bc3df48785552995ce4714aff627fc101caa379f9dc
SSDEEP

192:aQx1U46h8FHN3t4Ag/MkpAfQZz/IJ5ev:/y8FHNmZMkpAIZz/ILe

Score

10^/10

purecrypter discovery downloader loader

Malware Config

Extracted

Family

purecrypter

C2

https://www.vascocorretora.com.br/PPI/Lhysknv.dat

Targets

- Target
  
  bf6aabd3c8fc42049fc6435f2432c97a8e8aa3258e0591b3756d5d84df2b3e6c.exe
- Size
  
  12KB
- MD5
  
  d165a97582770739cc7b847e1b5dbeef
- SHA1
  
  fa06c1014fa0810e3ea2cbc661e9bb443461ad9e
- SHA256
  
  bf6aabd3c8fc42049fc6435f2432c97a8e8aa3258e0591b3756d5d84df2b3e6c
- SHA512
  
  2e4f226bf38340ea356c6003549bccfca562247375475b82e92ba97d9f7969fc795e2a3134dbcb0aecec2bc3df48785552995ce4714aff627fc101caa379f9dc
- SSDEEP
  
  192:aQx1U46h8FHN3t4Ag/MkpAfQZz/IJ5ev:/y8FHNmZMkpAIZz/ILe
Score

10^/10

purecrypter discovery downloader loader
- PureCrypter
  PureCrypter is a .NET malware loader first seen in early 2021.
  loader downloader purecrypter
- Purecrypter family
  purecrypter
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

purecrypterdiscoverydownloaderloader

behavioral2

purecrypterdiscoverydownloaderloader