General
Target

mixazed_20210731-070734

Size

430KB

Sample

210731-11taac5wdx

Score
10/10
MD5

a7e7c55d763359f4b590ea4eec10b800

SHA1

c9c9c25f0f90048face442c607428cfbfdc3798b

SHA256

7ea4937a54c4f1373be662d2a8c3bb4aa34faf25dff90318921bdc5a5853524c

SHA512

71fedc8d1d8961c9e253876f66f434694fe7df200d391af577602a83046bc4698bb174cb93ecc78ef9bb4b75fa19cf15d35d21f4b349c29fd22008c4089bd08a

Malware Config
Targets
Target

mixazed_20210731-070734

MD5

a7e7c55d763359f4b590ea4eec10b800

Filesize

430KB

Score
10/10
SHA1

c9c9c25f0f90048face442c607428cfbfdc3798b

SHA256

7ea4937a54c4f1373be662d2a8c3bb4aa34faf25dff90318921bdc5a5853524c

SHA512

71fedc8d1d8961c9e253876f66f434694fe7df200d391af577602a83046bc4698bb174cb93ecc78ef9bb4b75fa19cf15d35d21f4b349c29fd22008c4089bd08a

Tags

Signatures

  • Shurk

    Description

    Shurk is an infostealer, written in C++ which appeared in 2021.

    Tags

  • Shurk Stealer Payload

  • Reads user/profile data of web browsers

    Description

    Infostealers often target stored browser data, which can include saved credentials etc.

    Tags

    TTPs

    Data from Local SystemCredentials in Files
  • Suspicious use of SetThreadContext

Related Tasks

MITRE ATT&CK Matrix
Command and Control
    Credential Access
    Defense Evasion
      Discovery
        Execution
          Exfiltration
            Impact
              Initial Access
                Lateral Movement
                  Persistence
                    Privilege Escalation
                      Tasks

                      static1

                      Score
                      N/A

                      behavioral1

                      Score
                      10/10

                      behavioral2

                      Score
                      10/10