Sotwe logo Sotwe logo

Top Tweets for #PureCrypter

netresec's profile image
𝙽𝙴𝚃𝚁𝙴𝚂𝙴𝙲 @netresec
Do #PureLogs Stealer and #PureCrypter use the same C2 protocol, or is there some way to tell the C2 protocols apart? C2 servers: 🔥 45.141.233.100:7708 🔥 144.172.91.74:7709 🔥 62.60.235.100:9100 🔥 65.108.24.103:62050 🔥 91.92.120.102:62050 🔥 192.30.240.242:62520
netresec's tweet photo. Do #PureLogs Stealer and #PureCrypter use the same C2 protocol, or is there some way to tell the C2 protocols apart? C2 servers: 🔥 45.141.233.100:7708 🔥 144.172.91.74:7709 🔥 62.60.235.100:9100 🔥 65.108.24.103:62050 🔥 91.92.120.102:62050 🔥 192.30.240.242:62520 https://t.co/z9OUVGnQOZ
1
49
15
12
3K
p3bt3b's profile image
p3bt3b @p3bt3b
Finally it’s out, Absolutely amazing work from @YungBinary 🔥🔥on #PureCrypter
YungBinary's profile image
YungBinary Verified account @YungBinary
Blog on #PureCrypter just dropped! Included is a tool to automate the unpacking process, decrypt strings, and dump the Protobufs-based malware configuration. There's also countless screenshots for those interested in how it works! https://t.co/slZgpdYTrw
YungBinary's tweet photo. Blog on #PureCrypter just dropped! Included is a tool to automate the unpacking process, decrypt strings, and dump the Protobufs-based malware configuration. There's also countless screenshots for those interested in how it works! https://t.co/slZgpdYTrw https://t.co/nA1AsI9s5V
4
78
27
39
10K
0
5
0
1
303
YungBinary's profile image
YungBinary Verified account @YungBinary
Blog on #PureCrypter just dropped! Included is a tool to automate the unpacking process, decrypt strings, and dump the Protobufs-based malware configuration. There's also countless screenshots for those interested in how it works! https://t.co/slZgpdYTrw
YungBinary's tweet photo. Blog on #PureCrypter just dropped! Included is a tool to automate the unpacking process, decrypt strings, and dump the Protobufs-based malware configuration. There's also countless screenshots for those interested in how it works! https://t.co/slZgpdYTrw https://t.co/nA1AsI9s5V
4
78
27
39
10K
ShanHolo's profile image
Shanholo @ShanHolo
🚨#Opendir #Malware🚨 hxxp://sappycloud.org/ ⚠️#Purecrypter ☣️Nigga.exe➡️186d294e74367b1199a81aa71c43dd06 📡45.88.186.38:7232 ⚠️#Xworm ☣️folk.bat➡️a2daabff36b8da27747593cf1d93b244 📡176.65.144.116:7232 ⚠️Bat script 📸⤵️ ☣️road.bat➡️303dfee95d4f85509c55c5a95bfe7e78
ShanHolo's tweet photo. 🚨#Opendir #Malware🚨 hxxp://sappycloud.org/ ⚠️#Purecrypter ☣️Nigga.exe➡️186d294e74367b1199a81aa71c43dd06 📡45.88.186.38:7232 ⚠️#Xworm ☣️folk.bat➡️a2daabff36b8da27747593cf1d93b244 📡176.65.144.116:7232 ⚠️Bat script 📸⤵️ ☣️road.bat➡️303dfee95d4f85509c55c5a95bfe7e78 https://t.co/UU5ksnfU39
2
22
4
8
2K
smica83's profile image
Szabolcs Schmidt Verified account @smica83
Some #serbian gov domains compromised and attacking #hungarian government facilities and organisations, using compromised croatian websites for next stage. #PureCrypter sample from today: https://t.co/3euglPfiN5 EXE: https://t.co/QC4NQyWT6d @JAMESWT_MHT
1
17
6
3
2K
RussianPanda9xx's profile image
RussianPanda 🐼 🇺🇦 Verified account @RussianPanda9xx
They are also using #PureCrypter in that one 👀
virusbtn's profile image
Virus Bulletin @virusbtn
Netskope's Leandro Fróes looks into a global malware campaign using fake CAPTCHAs to deliver Lumma Stealer. The infection chain includes a step where the attacker asks the victim to execute a command from their clipboard using the Windows Run command. https://t.co/9izapkorM3
virusbtn's tweet photo. Netskope's Leandro Fróes looks into a global malware campaign using fake CAPTCHAs to deliver Lumma Stealer. The infection chain includes a step where the attacker asks the victim to execute a command from their clipboard using the Windows Run command. https://t.co/9izapkorM3 https://t.co/YecmvlDHID
1
36
14
13
8K
1
24
5
2
4K
marsomx_'s profile image
Simplicio Sam L. @marsomx_
uncrypted,exe seems to use #LimeCrypter (https://t.co/Mdm4lPxSpp) to load final #DarkVisionRat stored in resources and decrypted with rfc2898DeriveBytes AES function. Previously it was used with #PureCrypter as detected by @Threatlabz https://t.co/tWdBP6eJNJ
marsomx_'s tweet photo. uncrypted,exe seems to use #LimeCrypter (https://t.co/Mdm4lPxSpp) to load final #DarkVisionRat stored in resources and decrypted with rfc2898DeriveBytes AES function. Previously it was used with #PureCrypter as detected by @Threatlabz https://t.co/tWdBP6eJNJ https://t.co/Qli0nxNsZb
lontze7's profile image
Lontz @lontze7
#DarkVisionRAT #opendir https://5.89.185[.]156/
lontze7's tweet photo. #DarkVisionRAT #opendir https://5.89.185[.]156/ https://t.co/CeGsnE6PBC
1
43
5
11
7K
2
17
6
2
3K
anyrun_app's profile image
ANY.RUN Verified account @anyrun_app
🚨 #PureCrypter is a stealthy loader malware actively distributing threats like #AgentTesla, #RedLine stealer, and #SnakeKeylogger It disguises malicious files as videos or documents Learn more and gather #IOCs & samples 👉 https://t.co/zAYiWqhCyh
anyrun_app's tweet photo. 🚨 #PureCrypter is a stealthy loader malware actively distributing threats like #AgentTesla, #RedLine stealer, and #SnakeKeylogger It disguises malicious files as videos or documents Learn more and gather #IOCs & samples 👉 https://t.co/zAYiWqhCyh https://t.co/qwFjp6wO6j
0
43
12
11
3K
Racco42's profile image
Racco42 @Racco42
#malspam containing .bat attachment with embedded #purecrypter dropping #redline stealer C2: 104.168.34.185:2819 https://t.co/NXkyh2Bjtp
0
3
1
0
985
Threatlabz's profile image
Zscaler ThreatLabz Verified account @Threatlabz
Zscaler ThreatLabz uncovered a malware campaign using #DarkVision RAT alongside #PureCrypter and #DonutLoader. Our blog covers the attack chain as well as a technical analysis of DarkVision RAT including its persistence, network communication protocol, plugins, and commands. Link: https://t.co/D7abpnCxFL
Threatlabz's tweet photo. Zscaler ThreatLabz uncovered a malware campaign using #DarkVision RAT alongside #PureCrypter and #DonutLoader. Our blog covers the attack chain as well as a technical analysis of DarkVision RAT including its persistence, network communication protocol, plugins, and commands. Link: https://t.co/D7abpnCxFL
2
38
16
6
3K
JAMESWT_WT's profile image
JAMESWT @JAMESWT_WT
@malwrhunterteam Related #purecrypter #pureminer #netreactor ❇️https://t.co/L9G1ZogBpZ ❇️https://t.co/ScTYt1WQxi
0
2
1
0
173
threatintel's profile image
Threat Intelligence @threatintel
#ThreatProtection #PureCrypter #malware used in #Mallox #ransomware distribution campaign, read more about Symantec's protection: https://t.co/WRGSGLcUeY
0
0
1
0
1K
sekoia_io's profile image
Sekoia.io @sekoia_io
#Mallox affiliate leverages #PureCrypter in MS-SQL exploitation campaigns https://t.co/OSQF3FxHtD
1
22
15
1
2K
foxbook's profile image
キタきつね Verified account @foxbook
MS-SQL ハニーポット攻撃を介して展開される Mallox ランサムウェア Mallox Ransomware Deployed Via MS-SQL Honeypot Attack #InfoSecurityMagazine (May 13) #Mallox #MS-SQL #ランサムウェア #ブルートフォース #PureCrypter https://t.co/7ywihGjegK
0
4
0
0
435
anyrun_app's profile image
ANY.RUN Verified account @anyrun_app
#PureLogs is a stealer belonging to the Pure #malware family 🏴‍☠️ Delivered by the #PureCrypter loader, it steals browser data, crypto wallets, and even files. Learn more & collect its #IOCs/samples ➡️ https://t.co/3UPqQd1pFS
anyrun_app's tweet photo. #PureLogs is a stealer belonging to the Pure #malware family 🏴‍☠️ Delivered by the #PureCrypter loader, it steals browser data, crypto wallets, and even files. Learn more & collect its #IOCs/samples ➡️ https://t.co/3UPqQd1pFS https://t.co/oFkth5F7EC
0
4
2
1
1K
anyrun_app's profile image
ANY.RUN Verified account @anyrun_app
🚨 We made a complete breakdown of the #Pure malware family Pure is sophisticated #malware that's gaining popularity. It features #PureCrypter, a powerful stealer #PureLogs, and as we discovered — a miner. There's a lot of ground to cover. Let's dive in: https://t.co/2QOwlpTLts
0
64
22
12
7K
RussianPanda9xx's profile image
RussianPanda 🐼 🇺🇦 Verified account @RussianPanda9xx
#100DaysofYara Day 9: Excited to get this one in. Today we will cover the rules for the latest #PureCrypter's initial and core payloads. PureCrypter is a .NET crypter/loader, which has been used by many RATs and stealers. It also means another contribution to #UnprotectProject , cc @fr0gger_ 💜 PureCrypter initial payload: https://t.co/oigDnbonvT PureCrypter core payload: https://t.co/XiMefVWiql
RussianPanda9xx's tweet photo. #100DaysofYara Day 9: Excited to get this one in. Today we will cover the rules for the latest #PureCrypter's initial and core payloads. PureCrypter is a .NET crypter/loader, which has been used by many RATs and stealers. It also means another contribution to #UnprotectProject , cc @fr0gger_ 💜 PureCrypter initial payload: https://t.co/oigDnbonvT PureCrypter core payload: https://t.co/XiMefVWiql
4
63
14
9
7K
gothburz's profile image
Peter Girnus 🦅 Verified account @gothburz
296adaf28851028d68715c7e5f29326215d114feec70cb10ac123881c2edabd6 https://t.co/z7SzFo81xQ #purelogs #purecrypter #loader #stealer @anyrun_app
0
0
0
0
78
1ZRR4H's profile image
Germán Fernández Verified account @1ZRR4H
@karol_paciorek @500mk500 @g0njxa @JAMESWT_MHT @malwrhunterteam @executemalware Most likely #PureCrypter payloads.
0
3
0
0
295
ULTRAFRAUD's profile image
ULTRAFRAUD @ULTRAFRAUD
Red Teaming repo? Test lab? TA repo? ⁉️ Lots of #malware samples spotted at /4.233.216[.133 #opendir including #Guloader #Purecrypter #MagicRAT #Hive and several others 💀
ULTRAFRAUD's tweet photo. Red Teaming repo? Test lab? TA repo? ⁉️ Lots of #malware samples spotted at /4.233.216[.133 #opendir including #Guloader #Purecrypter #MagicRAT #Hive and several others 💀 https://t.co/jruSFfX9nd
3
65
29
22
15K

Last Seen Hashtags on Sotwe

嗨艹
Seen from United States
nolimit()
Seen from Peru
momcuck
Seen from United Kingdom
ensest
Seen from Turkey
analmilf
Seen from Indonesia
طاطا
Seen from Algeria
arachu
Seen from Indonesia
TEENAGE #TEENAGEGIRLS
Seen from Italy
nolimit
Seen from Brazil
กาฬสินธุ์นัดเย็ด
Seen from Thailand

Trends for you

1
oliver tree
Under 10K tweets
2
Germany
Under 10K tweets
3
Flag Day
Under 10K tweets
4
White House
Under 10K tweets
5
Happy Anniversary
Under 10K tweets
6
Beirut
Under 10K tweets
7
Happy Birthday President Trump
Under 10K tweets
8
Lewis
Under 10K tweets
9
Mr. President
Under 10K tweets
10
Golden Corral
Under 10K tweets

Most Popular Users

elonmusk's profile image
1
Elon Musk Verified account
@elonmusk
240.3M followers
barackobama's profile image
2
Barack Obama Verified account
@barackobama
119.3M followers
realdonaldtrump's profile image
3
Donald J. Trump Verified account
@realdonaldtrump
111.6M followers
cristiano's profile image
4
Cristiano Ronaldo Verified account
@cristiano
109.5M followers
narendramodi's profile image
5
Narendra Modi Verified account
@narendramodi
107M followers
rihanna's profile image
6
Rihanna Verified account
@rihanna
97.4M followers
nasa's profile image
7
NASA Verified account
@nasa
92.1M followers
justinbieber's profile image
8
Justin Bieber Verified account
@justinbieber
90.7M followers
katyperry's profile image
9
KATY PERRY Verified account
@katyperry
87.1M followers
taylorswift13's profile image
10
Taylor Swift Verified account
@taylorswift13
80.9M followers
ladygaga's profile image
11
Lady Gaga Verified account
@ladygaga
72.5M followers
kimkardashian's profile image
12
Kim Kardashian Verified account
@kimkardashian
69.5M followers
imvkohli's profile image
13
Virat Kohli Verified account
@imvkohli
69M followers
youtube's profile image
14
YouTube Verified account
@youtube
68.6M followers
billgates's profile image
15
Bill Gates Verified account
@billgates
63.6M followers
theellenshow's profile image
16
The Ellen Show
@theellenshow
62.5M followers
cnn's profile image
17
CNN Verified account
@cnn
61.9M followers
neymarjr's profile image
18
Neymar Jr Verified account
@neymarjr
61.6M followers
x's profile image
19
X Verified account
@x
60.9M followers
selenagomez's profile image
20
Selena Gomez Verified account
@selenagomez
60.2M followers