shurk | ae8e23ea1f3e6d2b15e16a933bfb26b22ab516415b438b4735875f4be2fd7078 | Triage

Resubmissions

13-03-2024 08:06

240313-jzpkyagd7t 10

13-03-2024 08:02

240313-jxazrsab83 7

Sharing

General

Target

AIMr.exe
Size

8.7MB
Sample

240313-jzpkyagd7t
MD5

cec28ab3cf544dcc8644e5cb997288f1
SHA1

7dab6b6b7a086e55f89044b69666a04a0126da21
SHA256

ae8e23ea1f3e6d2b15e16a933bfb26b22ab516415b438b4735875f4be2fd7078
SHA512

60bbfa03ef360dca963dd604f23a4fa0e1757cfbea8115c7c11ef22242c1c9c0b6b5f2e77e3d71e741c1993b25ffad4e44a95fe9a931531c3f02dbd9252eb3f8
SSDEEP

196608:hSbnRrp0jj51W903eV4QJ7MToEuGxgh858F0ibfULlgABx+kf7gioC9:M1N0jj/W+eGQJ7MTozGxu8C0ibfAicU+

Score

10^/10

shurk infostealer pyinstaller

Malware Config

Targets

- Target
  
  AIMr.exe
- Size
  
  8.7MB
- MD5
  
  cec28ab3cf544dcc8644e5cb997288f1
- SHA1
  
  7dab6b6b7a086e55f89044b69666a04a0126da21
- SHA256
  
  ae8e23ea1f3e6d2b15e16a933bfb26b22ab516415b438b4735875f4be2fd7078
- SHA512
  
  60bbfa03ef360dca963dd604f23a4fa0e1757cfbea8115c7c11ef22242c1c9c0b6b5f2e77e3d71e741c1993b25ffad4e44a95fe9a931531c3f02dbd9252eb3f8
- SSDEEP
  
  196608:hSbnRrp0jj51W903eV4QJ7MToEuGxgh858F0ibfULlgABx+kf7gioC9:M1N0jj/W+eGQJ7MTozGxu8C0ibfAicU+
Score

10^/10

shurk infostealer
- Shurk
  Shurk is an infostealer, written in C++ which appeared in 2021.
  infostealer shurk
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

shurkinfostealer