General

  • Target

    AIMr.exe

  • Size

    8.2MB

  • Sample

    240211-levmkaef7t

  • MD5

    be9a972f8587f47f3df1f51a0b83c7dd

  • SHA1

    4076af5f3cca5fbd519260022cd1a4c67fe9e9d4

  • SHA256

    0d1bb97f63756326bb8e7a4c5b071e8a753d0d0f470804b76ef20d6f80a6fd2b

  • SHA512

    5ea0f7b8ba2c48317f47336ba27189982d1de30ee70721481e170f7fbcf731a05d0b587ad53cf879f97a8670581c0563e2fe2a5b06e3fa7d7b3e75048a5b6b81

  • SSDEEP

    196608:QSbnRrT1W903eV4QJ7MToEuGxgh858F0ibfULlgAB+knzeCUw:Z11W+eGQJ7MTozGxu8C0ibfAiYCA

Malware Config

Targets

    • Target

      AIMr.exe

    • Size

      8.2MB

    • MD5

      be9a972f8587f47f3df1f51a0b83c7dd

    • SHA1

      4076af5f3cca5fbd519260022cd1a4c67fe9e9d4

    • SHA256

      0d1bb97f63756326bb8e7a4c5b071e8a753d0d0f470804b76ef20d6f80a6fd2b

    • SHA512

      5ea0f7b8ba2c48317f47336ba27189982d1de30ee70721481e170f7fbcf731a05d0b587ad53cf879f97a8670581c0563e2fe2a5b06e3fa7d7b3e75048a5b6b81

    • SSDEEP

      196608:QSbnRrT1W903eV4QJ7MToEuGxgh858F0ibfULlgAB+knzeCUw:Z11W+eGQJ7MTozGxu8C0ibfAiYCA

    Score
    10/10
    • Shurk

      Shurk is an infostealer, written in C++ which appeared in 2021.

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks