shurk | 269fb57ab04f2dbb6dd581ed952fcf9d04d7f51e6da4ec5becd50d9ea962897d | Triage

Sharing

General

Target

949249312.exe
Size

7.2MB
Sample

220824-v529rsggel
MD5

ce45869a4141e98397c694a3e114c64d
SHA1

af6a203de949cbaabe4dafbe4478638946fb84fc
SHA256

269fb57ab04f2dbb6dd581ed952fcf9d04d7f51e6da4ec5becd50d9ea962897d
SHA512

88ae84a4157caef33863d2fee34b0cf4933955e488221385ff757010473d71bc5a1ef07862b664a4d641214d9ff189f266cc581697eea7ee1d4d997fbb0e1c93
SSDEEP

49152:6fbF+F3plgWrb/TwvO90dL3BmAFd4A64nsfJ1WQepVT8CPIpyy+Y/zmZnHz1iDz5:6fotWfpp0JzcCKvxQunEFbVepK3dx

Score

10^/10

shurk spyware stealer

Malware Config

Targets

- Target
  
  949249312.exe
- Size
  
  7.2MB
- MD5
  
  ce45869a4141e98397c694a3e114c64d
- SHA1
  
  af6a203de949cbaabe4dafbe4478638946fb84fc
- SHA256
  
  269fb57ab04f2dbb6dd581ed952fcf9d04d7f51e6da4ec5becd50d9ea962897d
- SHA512
  
  88ae84a4157caef33863d2fee34b0cf4933955e488221385ff757010473d71bc5a1ef07862b664a4d641214d9ff189f266cc581697eea7ee1d4d997fbb0e1c93
- SSDEEP
  
  49152:6fbF+F3plgWrb/TwvO90dL3BmAFd4A64nsfJ1WQepVT8CPIpyy+Y/zmZnHz1iDz5:6fotWfpp0JzcCKvxQunEFbVepK3dx
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2