IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Technical Analysis of PureCrypter: A Fully-Functional Loader Distributing Remote Access Trojans and Information Stealers

DATE : 2022-06-02T07:00:00
SOURCE : zscaler.com

FILE_HASH_MD5:
2F820378FEEFBD90987D05D28F0FF0FE
742CA81F5AC2028E04861092F9F72ECB

FILE_HASH_SHA256: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Domain:
purecoder.sellix.io
amcomri.upro.site
cdn.discordapp.com
taskmgrdev.com

Url:
https://purecoder.sellix.io/
http://gbtak.ir/wp-content/Ygjklu.log
http://amcomri.upro.site/.tmb/ID44/313606953372.jpg
https://cdn.discordapp.com/attachments/933024359981932666/934953013670449253/Koieiminr.jpg
http://amcomri.upro.site/.tmb/ID44/Ffobs.png
https://cdn.discordapp.com/attachments/911013699026825266/935017324182913104/EpicGames.jpg
http://gbtak.ir/wp-content/846569297734.jpg
https://cdn.discordapp.com/attachments/765212138226450455/934977016292327455/Installer2.log
https://cdn.discordapp.com/attachments/934261104564113441/934945441370497054/FlareTopia_V5.1.log
https://cdn.discordapp.com/attachments/934261104564113441/935058809200730142/new.log
https://transfer.sh/get/3tWVO9/Evbccj.png
http://gbtak.ir/wp-content/759279720662.jpg
http://sub.areal-parfumi.si/kk/Lnnuda.log
http://sub.areal-parfumi.si/new/Ofwcwpm.jpg
http://gbtak.ir/wp-content/078571269562.jpg
https://cdn.discordapp.com/attachments/846778795524751371/935185760783585360/Pmvzeaoj.log
https://cdn.discordapp.com/attachments/933024359981932666/935065418803056680/Lkrbylqxx.png
http://taskmgrdev.com/e/Jymuty.png