PureCrypter Loader continues to be active and has spread to more than 10 other families

PureCrypter is a MaaS typeloader saw some time ago, which has been very active this year, and has promoted more than 10 other families, using hundreds of C2.

REFERENCE: https://blog.netlab.360.com/purecrypter/

TAGS: agenttesla, botnet, mars, malware-as-a-service, loader, bat2exe, downloader, Redline, AsyncRAT, Powershell, VBS, PureCrypter

MALWARE FAMILIES: PureCrypter, RedLine Stealer, AsyncRAT

ATT&CK IDS: T1587.001 - Malware, T1064 - Scripting, TA0011 - Command and Control, T1055 - Process Injection, T1093 - Process Hollowing

Read More:

https://otx.alienvault.com/pulse/630cb63d30d8b469b2a6a1c7