Description
Arkei is an infostealer written in C++.
a9dea10c6d4d205faab1ac8db69384e9c3dc91fd5a718266957e4e164f76cd4a.bin
General
Target
Size
Sample
a9dea10c6d4d205faab1ac8db69384e9c3dc91fd5a718266957e4e164f76cd4a.bin
311KB
211013-ncl9hsdggp
Score
10 /10
MD5
SHA1
SHA256
SHA512
0050729426253655c88625a8ad93d7a2
a8ea376bc26eba3ff32e72cb2bf43cccfa1c87d7
a9dea10c6d4d205faab1ac8db69384e9c3dc91fd5a718266957e4e164f76cd4a
1947c78aba1933c3da2eed125d760bf7c4b3bf75a113139a22db0d2f1e1e3e8b4640c0330b5220712275884567daf9548467a96747fb550fc8cb24dfc989d37c
Malware Config
Targets
Target
MD5
Filesize
a9dea10c6d4d205faab1ac8db69384e9c3dc91fd5a718266957e4e164f76cd4a.bin
0050729426253655c88625a8ad93d7a2
311KB
Score
10/10
SHA1
SHA256
SHA512
a8ea376bc26eba3ff32e72cb2bf43cccfa1c87d7
a9dea10c6d4d205faab1ac8db69384e9c3dc91fd5a718266957e4e164f76cd4a
1947c78aba1933c3da2eed125d760bf7c4b3bf75a113139a22db0d2f1e1e3e8b4640c0330b5220712275884567daf9548467a96747fb550fc8cb24dfc989d37c
Tags
Signatures
-
Arkei
-
Suspicious use of NtCreateProcessExOtherParentProcess
-
Arkei Stealer Payload
Tags
-
Reads user/profile data of web browsers
Description
Infostealers often target stored browser data, which can include saved credentials etc.
Tags
TTPs
Related Tasks
MITRE ATT&CK Matrix
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Tasks