arkei | 1f3200b3a27d38457255512626ec9234a124522fa8383afc09cb52743c15fee6 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

1f3200b3a27d38457255512626ec9234a124522fa8383afc09cb52743c15fee6
Size

197KB
Sample

210915-gqechachdr
MD5

44d02d116682d4ca4c37c543f298099d
SHA1

dfbb378b660facf964cea96ad6694ce2c9b3248d
SHA256

1f3200b3a27d38457255512626ec9234a124522fa8383afc09cb52743c15fee6
SHA512

25da1db574974ec7ea0d9b2cd1c5dcdcd17ec319809ab74c739dc5afdfcfe07917bcb37ef28e35c3b7530a1b86f61c9d6f836d69f484ffb81de09f99034ca4a3

Score

10^/10

arkei spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

1f3200b3a27d38457255512626ec9234a124522fa8383afc09cb52743c15fee6.exe

Resource

win10v20210408

arkei spyware stealer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  1f3200b3a27d38457255512626ec9234a124522fa8383afc09cb52743c15fee6
- Size
  
  197KB
- MD5
  
  44d02d116682d4ca4c37c543f298099d
- SHA1
  
  dfbb378b660facf964cea96ad6694ce2c9b3248d
- SHA256
  
  1f3200b3a27d38457255512626ec9234a124522fa8383afc09cb52743c15fee6
- SHA512
  
  25da1db574974ec7ea0d9b2cd1c5dcdcd17ec319809ab74c739dc5afdfcfe07917bcb37ef28e35c3b7530a1b86f61c9d6f836d69f484ffb81de09f99034ca4a3
Score

10^/10

arkei spyware stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
- Suspicious use of NtCreateProcessExOtherParentProcess
- Arkei Stealer Payload
  stealer
- Downloads MZ/PE file
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

arkeispywarestealer

© 2018-2024

Terms | Privacy