shurk | b4b2d99b069c4ef7f184813ce08daa1f97066dcd0b8fed316605c7c6ef02dde5 | Triage

Sharing

General

Target

AIMr-main (1).zip
Size

21.6MB
Sample

241026-2yhp4szfnf
MD5

f358922119f3728f8ebbb5818db1e1d9
SHA1

93b68506d6cb131749fca2f5407d5f5450137059
SHA256

b4b2d99b069c4ef7f184813ce08daa1f97066dcd0b8fed316605c7c6ef02dde5
SHA512

09e5bee1031bd33b0de9d7d7ab586ce8faa34ea2d19698de2e724738c656d7efe17a9a9a6149f2f652a902c560dbe1b5a444aa6a069a8d948d54fec5ee91848f
SSDEEP

393216:36qDFKCYkk3GlKJYOlD4r4KRd1FTJ8gU/tH4OMz9jD0YwmqshJRC6/uWS:36qhKCYAgJpiPTuxi9wmqszRv/I

Score

10^/10

shurk discovery infostealer

Malware Config

Targets

- Target
  
  AIMr-main (1).zip
- Size
  
  21.6MB
- MD5
  
  f358922119f3728f8ebbb5818db1e1d9
- SHA1
  
  93b68506d6cb131749fca2f5407d5f5450137059
- SHA256
  
  b4b2d99b069c4ef7f184813ce08daa1f97066dcd0b8fed316605c7c6ef02dde5
- SHA512
  
  09e5bee1031bd33b0de9d7d7ab586ce8faa34ea2d19698de2e724738c656d7efe17a9a9a6149f2f652a902c560dbe1b5a444aa6a069a8d948d54fec5ee91848f
- SSDEEP
  
  393216:36qDFKCYkk3GlKJYOlD4r4KRd1FTJ8gU/tH4OMz9jD0YwmqshJRC6/uWS:36qhKCYAgJpiPTuxi9wmqszRv/I
Score

10^/10

shurk discovery infostealer
- Shurk
  Shurk is an infostealer, written in C++ which appeared in 2021.
  infostealer shurk
- Shurk family
  shurk
behavioral1 behavioral2
- Target
  
  AIMr-main/AIMr.ico
- Size
  
  16KB
- MD5
  
  242c9b7e51cac4e19ba395cc76db2327
- SHA1
  
  1e4139926f65ef60c6dda0a469d10cafd606301c
- SHA256
  
  1cc948832ed92f5971b8611550e06eac74cb4acb58dc40f95fbdbef66c3bcad1
- SHA512
  
  cf08f58d250ebd209aea7b17f67e5f84b8a45ef4f34defc61bb28f8f47d699cfbb5d4a8ff38c46cc819219f51c6bb6aa362ee5ae6d29552a41e8fdcbb8461ac9
- SSDEEP
  
  192:fCeN7RgC7dzR4GaDwC/0d7gstC+zhdDdeBRbMVuLtGvg8NEDraYhYKCcLNP:6G/Z2rDRsdDEqvp1dNKY9qNP
Score

3^/10
behavioral3 behavioral4
- Target
  
  AIMr-main/AIMr.py
- Size
  
  9KB
- MD5
  
  59f08c92b759ada1d447387b7b71e5d6
- SHA1
  
  394ba0d955bd7e4e37f093a5bbfda9e5fe28cc59
- SHA256
  
  bfb4a9e7c1d5ec07d4248e2ce522d271dba26b6300139c7fcd6c3d0107251552
- SHA512
  
  ab3286c359872d3c2ad6aa7efdb541ca57a50f55f95d57f9624c5a359f841d8056e01d8a139fc7afbd47a4eea514602c6af466d13590d2dec78bfa4886008235
- SSDEEP
  
  192:S9EVODVxMUS4PAkDN2HH2RD86PGTGK7jiONaeuAYTksmGQq3s:EjxMUTP5h18yUGKHiONavAYpPc
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  AIMr-main/LICENSE
- Size
  
  1KB
- MD5
  
  5d5ad2f47589f96508467eb1182df38b
- SHA1
  
  f8c581bac8713acddc2a079bee4ce0da4e4a6e6a
- SHA256
  
  935e2af479bfe32d9fd9833fe364f46a98891149943632abea090c0d323758e4
- SHA512
  
  dd10856351dce08cb28e18e3c31837dcf348069c3123789852bd960258e0e50520e18f2e32b5dafe53712d0f8111347bb00f928fc296c40611a2e5e2372fc4c1
Score

1^/10
behavioral7 behavioral8
- Target
  
  AIMr-main/README.md
- Size
  
  3KB
- MD5
  
  46dfde571e33724c9aacf98953dbc28a
- SHA1
  
  6b7159b5f3294bf4fa2b394c49b97b34c210a579
- SHA256
  
  09ff63161f3edd42c10794dc6789b8584968797dd172e5b49e8d24f07879ee95
- SHA512
  
  94eecbed4d4cb9cb6b6642ffa383ef3ad0f583ea720c10a0c4a3a43149397e61153d07492e8a5c0329eadbedb92ae72ff246145b90c224ce06472744d890d66f
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  AIMr-main/autopy.py
- Size
  
  9KB
- MD5
  
  a215cec9386e039e2dad348b4fb83f92
- SHA1
  
  9488859ec67d86b27e31c4b1329991d4e62ec965
- SHA256
  
  22a510713a194190e918bbd17cfdebedbf4189249ee6c746bde35b1f106b3f80
- SHA512
  
  328c83b5cd28e7bb429967eb73c40737bbcd167a450906d34c1a437fe841258fe062efbf15dc1c1090fbf887e64a38639fc32c6d90b8e029d6ebdf9ae13c217d
- SSDEEP
  
  192:zHuOSdQuGS4XN7Vex1Yb8wCtZBx29Qf7MFGcq+n8ZSZz5LfliMuhGWFS:Gu97VefYlEq/CgojFS
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  AIMr-main/changelog.txt
- Size
  
  286B
- MD5
  
  9f538153dade84c72c1d0e5b467951a7
- SHA1
  
  2f45bc723de4c2d642452d62971c13c39ca0b9c1
- SHA256
  
  cabc0244895b8af59283fa599b8d30ee4138266d335fdaf1400ebbd00fb3e1f4
- SHA512
  
  df4217780bd5b7084902c8b64ecda4ab35436ee651544bd34e4f5718666fb9a716038192bf0b208908f1361377365dac7f25931afcf03cd34ee4451fab6f0bb4
Score

1^/10
behavioral13 behavioral14
- Target
  
  AIMr-main/config.py
- Size
  
  21KB
- MD5
  
  ba26cb22e73915dc2dcf1704cbb56fda
- SHA1
  
  be3b5cf36a663b5fdb7e95e7953d0b02794436ad
- SHA256
  
  383c184729a301867052df629ad05d1c50c323af1b0cc5a16de784098c4a1d21
- SHA512
  
  21e7fd4dd9b6bfd4e3d548bf2e8a5a24ee43f3a17032f20351d54ccdefea38e1e852f63338582e693dd43962b01e45e273d4238d2c7f071ead3ccc499fbcbff5
- SSDEEP
  
  384:wvp4gaC34eVTfugbmAAtGgq7nkcq61/ldQsTck6Jc6OipubOcwXkhe3CWK2B0:LC3KtAGXmnkcqU/lWs8cDipCEkhcZ0
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  AIMr-main/current_version.txt
- Size
  
  5B
- MD5
  
  3c8b5cb81bc43b3de246d028ca79a46b
- SHA1
  
  3a27aacb378eb6adbbaaf6fdbe19c92fd00d8e14
- SHA256
  
  8683dda7440330ed1c788dbfb386eb83521d8d41532834b15e8b13aec369230d
- SHA512
  
  580685d22a3d96df5c9607920310780ea27f06dca46585bc75166e373e3c4cfbf007800015dacc65b4acf1378c16e2d7985dd40712f294f2fe97080534c313e5
Score

1^/10
behavioral17 behavioral18
- Target
  
  AIMr-main/daily.txt
- Size
  
  64B
- MD5
  
  bd892d8a17fd1889ee932858e3bcf673
- SHA1
  
  06aa4a0d6d5347bc84bd1150f2a2ee2642433491
- SHA256
  
  23bbfb6202861ae3b8e5e2fdfc9bc292581001804abb24f672367626f94ff2a2
- SHA512
  
  07c063a4ffda4b4e1ede173ffdc75f811a1b232b1e906abe11d244790c6a081df29352b58730d8782ae8fb3bc9d635de4355516876113d47f446e1a8870f134f
Score

1^/10
behavioral19 behavioral20
- Target
  
  AIMr-main/ids.txt
- Size
  
  51B
- MD5
  
  c41c1381b68c9271c13eabec53208a20
- SHA1
  
  8ea66af7642c2595a9970d0150ec0f4a5a76f959
- SHA256
  
  d65859840b1620cc7f3f7d55eecc97142bc83072df8b14d5ddb5e05ee432bd06
- SHA512
  
  8ae15db1d8606a6301c24e89168fc782298d982ff7fc1de68af299a985af0f811e99261b14976c0b39d2e81094d978fbffeb845771d3265b7273de7a4e6944df
Score

1^/10
behavioral21 behavioral22
- Target
  
  AIMr-main/info.md
- Size
  
  2KB
- MD5
  
  7fc7d9033e700dfc68ee810b680ec378
- SHA1
  
  0b3efcc90eac0075f7ebc10a3a424eeed71629dc
- SHA256
  
  6ec2a6f9ddf988fd58676dbd7a1aa5bda727236fbbfb7b8d56e4c87ceac83247
- SHA512
  
  cdc914977971d6a69689d149d76d85b751d7965a60e46046aecff293ff0c4dd5b32c404712a5f2f292db7efcd820f468980a1595a672473c8f1fc12fb12aabd4
Score

3^/10

discovery
behavioral23 behavioral24
- Target
  
  AIMr-main/installation.md
- Size
  
  1KB
- MD5
  
  f0e0d8a5bd400c2f25b624b4c7218aa6
- SHA1
  
  0b526730ff6aa5f95587fa7b1e5025465c63e9cf
- SHA256
  
  a42668c0fcb779e91bd16002e7b1a9f39c28283d06d06c5ef39eee59a26dbeab
- SHA512
  
  3ccf698117911650db5bfbf1cf7fee55294f52310b11b50703aad9be1ee2e622e29e19b62bc445a10ac4f9b227f5bfa1cb61cad89d30a14c6c8a89681e7454e8
Score

3^/10

discovery
behavioral25 behavioral26
- Target
  
  AIMr-main/library.py
- Size
  
  18KB
- MD5
  
  e7e2a0977bc9167ca25f90b1ed4fb6f3
- SHA1
  
  da280ac06882235ded4b50156f6616c7c7d6142a
- SHA256
  
  b93e46b5a27082ed237d53cefa84dbe498a7341afc7d11fcb20d4fa63a09eb0c
- SHA512
  
  e6aa03b0543484e5fe3ae92b9b8dbfb861cc63e808c57fc09cbf6d13a5efc5dde5865f78535aa5b929f06e871f574659958c9babc600f6107e3b31f40a106f0d
- SSDEEP
  
  384:xjWf8VTVd70crNQ2U/t67IWcvSJ0ehf6AldJPlxdR0KBzNWCBT:aeTVJ0crO24t2bv0MBNxdqCBT
Score

3^/10

discovery
behavioral27 behavioral28
- Target
  
  AIMr-main/logo.txt
- Size
  
  329B
- MD5
  
  c7d3e84125e24819571cc29caf9139df
- SHA1
  
  48868674b6a2dcdf773e74d5c684fab0e0207dba
- SHA256
  
  3bd49f4a1aba239ae850245d11b134bf0141238b3b7b90cba187c46e0676c17e
- SHA512
  
  ab05bbbefb331eff5143a1a73cc0056928b7aea40696959cb602100609f3082097d6da53dcddf5633c9f2eb13642926adfa8ec125c6a5f3b79969c62063325d4
Score

1^/10
behavioral29 behavioral30
- Target
  
  AIMr-main/req.txt
- Size
  
  216B
- MD5
  
  35ff3882ba2a92b32ddebb00a0b0e8f3
- SHA1
  
  2b1d9a288104b2f784965f1110a6daceba514302
- SHA256
  
  e55955b1211e976534a2cfcb7353221ef1c8742e45964aafe47c76393a766985
- SHA512
  
  6d0053fe79eee8521b969fc290f7c837f2f4425136e95c813d1ab0450a2108ef000c777626f7ed650ab60b300879b88f89a3dc6fd98dfa0045dfd48373d0c1a2
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

shurkdiscoveryinfostealer

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32