shurk | 0d1bb97f63756326bb8e7a4c5b071e8a753d0d0f470804b76ef20d6f80a6fd2b | Triage

Sharing

General

Target

AIMr.exe
Size

8.2MB
Sample

240211-hp1psafg68
MD5

be9a972f8587f47f3df1f51a0b83c7dd
SHA1

4076af5f3cca5fbd519260022cd1a4c67fe9e9d4
SHA256

0d1bb97f63756326bb8e7a4c5b071e8a753d0d0f470804b76ef20d6f80a6fd2b
SHA512

5ea0f7b8ba2c48317f47336ba27189982d1de30ee70721481e170f7fbcf731a05d0b587ad53cf879f97a8670581c0563e2fe2a5b06e3fa7d7b3e75048a5b6b81
SSDEEP

196608:QSbnRrT1W903eV4QJ7MToEuGxgh858F0ibfULlgAB+knzeCUw:Z11W+eGQJ7MTozGxu8C0ibfAiYCA

Score

10^/10

shurk infostealer pyinstaller

Malware Config

Targets

- Target
  
  AIMr.exe
- Size
  
  8.2MB
- MD5
  
  be9a972f8587f47f3df1f51a0b83c7dd
- SHA1
  
  4076af5f3cca5fbd519260022cd1a4c67fe9e9d4
- SHA256
  
  0d1bb97f63756326bb8e7a4c5b071e8a753d0d0f470804b76ef20d6f80a6fd2b
- SHA512
  
  5ea0f7b8ba2c48317f47336ba27189982d1de30ee70721481e170f7fbcf731a05d0b587ad53cf879f97a8670581c0563e2fe2a5b06e3fa7d7b3e75048a5b6b81
- SSDEEP
  
  196608:QSbnRrT1W903eV4QJ7MToEuGxgh858F0ibfULlgAB+knzeCUw:Z11W+eGQJ7MTozGxu8C0ibfAiYCA
Score

10^/10

shurk infostealer
- Shurk
  Shurk is an infostealer, written in C++ which appeared in 2021.
  infostealer shurk
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

shurkinfostealer