shurk | 0d1bb97f63756326bb8e7a4c5b071e8a753d0d0f470804b76ef20d6f80a6fd2b | Triage

Sharing

General

Target

AIMr.exe
Size

8.2MB
Sample

240211-levmkaef7t
MD5

be9a972f8587f47f3df1f51a0b83c7dd
SHA1

4076af5f3cca5fbd519260022cd1a4c67fe9e9d4
SHA256

0d1bb97f63756326bb8e7a4c5b071e8a753d0d0f470804b76ef20d6f80a6fd2b
SHA512

5ea0f7b8ba2c48317f47336ba27189982d1de30ee70721481e170f7fbcf731a05d0b587ad53cf879f97a8670581c0563e2fe2a5b06e3fa7d7b3e75048a5b6b81
SSDEEP

196608:QSbnRrT1W903eV4QJ7MToEuGxgh858F0ibfULlgAB+knzeCUw:Z11W+eGQJ7MTozGxu8C0ibfAiYCA

Score

10^/10

shurk infostealer pyinstaller

Malware Config

Targets

- Target
  
  AIMr.exe
- Size
  
  8.2MB
- MD5
  
  be9a972f8587f47f3df1f51a0b83c7dd
- SHA1
  
  4076af5f3cca5fbd519260022cd1a4c67fe9e9d4
- SHA256
  
  0d1bb97f63756326bb8e7a4c5b071e8a753d0d0f470804b76ef20d6f80a6fd2b
- SHA512
  
  5ea0f7b8ba2c48317f47336ba27189982d1de30ee70721481e170f7fbcf731a05d0b587ad53cf879f97a8670581c0563e2fe2a5b06e3fa7d7b3e75048a5b6b81
- SSDEEP
  
  196608:QSbnRrT1W903eV4QJ7MToEuGxgh858F0ibfULlgAB+knzeCUw:Z11W+eGQJ7MTozGxu8C0ibfAiYCA
Score

10^/10

shurk infostealer
- Shurk
  Shurk is an infostealer, written in C++ which appeared in 2021.
  infostealer shurk
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

shurkinfostealer