Overview

overview

10

Static

static

3

AIMr.exe

windows10-1703-x64

10

Resubmissions

20-02-2024 00:51

240220-a7p21agc7s 10

20-02-2024 00:39

240220-azyzyagg33 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    AIMr.exe

  • Size

    8.7MB

  • Sample

    240220-a7p21agc7s

  • MD5

    a0e21fe8f23d8e9d129df06fb6d13636

  • SHA1

    ffc6c8be542c112dcb9bb55114df82cf440192c4

  • SHA256

    754cdfe578fd727a22d985d006913e4f6f89c209fa7d85401449b0f4ecc6179e

  • SHA512

    3e7c35b1b7b1713b379665d11fb6cffdb12b5b8108b1d0e46071db629a4514dcd5478ca83a5b320bf108d35f1c693bb6dbbe1b14bae3ddce1b5189c296a51498

  • SSDEEP

    196608:jwbvW0jj51W903eV4QJ7MToEuGxgh858F0ibfULlgABfRk90Ql9:U60jj/W+eGQJ7MTozGxu8C0ibfAi3n

Score
10/10
shurkinfostealerpyinstaller

Malware Config

Targets

    • Target

      AIMr.exe

    • Size

      8.7MB

    • MD5

      a0e21fe8f23d8e9d129df06fb6d13636

    • SHA1

      ffc6c8be542c112dcb9bb55114df82cf440192c4

    • SHA256

      754cdfe578fd727a22d985d006913e4f6f89c209fa7d85401449b0f4ecc6179e

    • SHA512

      3e7c35b1b7b1713b379665d11fb6cffdb12b5b8108b1d0e46071db629a4514dcd5478ca83a5b320bf108d35f1c693bb6dbbe1b14bae3ddce1b5189c296a51498

    • SSDEEP

      196608:jwbvW0jj51W903eV4QJ7MToEuGxgh858F0ibfULlgABfRk90Ql9:U60jj/W+eGQJ7MTozGxu8C0ibfAi3n

    Score
    10/10
    shurkinfostealer

    • Shurk

      Shurk is an infostealer, written in C++ which appeared in 2021.

      infostealershurk

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

1
T1102

Impact

Resource Development

Reconnaissance

Tasks