Description
Arkei is an infostealer written in C++.
8c44101c51a7c4cefb2c90cb291049a7.exe
327KB
211226-kce9esbda6
8c44101c51a7c4cefb2c90cb291049a7
7795b21d0e561be4943f3949c1007f654ff2f0bd
5e98a67c09e5c975e6d6a86235294386b829ba1df7d1436a9abc9db35f224b5b
ddfcfc251a64018a8d350d39bd5b33b7aec20fec115dd20e3bf270f3041e52e2f9f0b52f620991b10a5759e656f74a407cf71cda072e520039d46519cbf623d3
Family | smokeloader |
Version | 2020 |
C2 |
http://host-data-coin-11.com/ http://file-coin-host-12.com/ http://srtuiyhuali.at/ http://fufuiloirtu.com/ http://amogohuigotuli.at/ http://novohudosovu.com/ http://brutuilionust.com/ http://bubushkalioua.com/ http://dumuilistrati.at/ http://verboliatsiaeeees.com/ |
rc4.i32 |
|
rc4.i32 |
|
rc4.i32 |
|
rc4.i32 |
|
Family | tofsee |
C2 |
parubey.info patmushta.info |
Family | redline |
Botnet | 1 |
C2 |
86.107.197.138:38133 |
Family | raccoon |
Botnet | 10da56e7e71e97bdc1f36eb76813bbc3231de7e4 |
Attributes |
url4cnc http://194.180.174.53/capibar http://91.219.236.18/capibar http://194.180.174.41/capibar http://91.219.236.148/capibar https://t.me/capibar |
rc4.plain |
|
rc4.plain |
|
8c44101c51a7c4cefb2c90cb291049a7.exe
8c44101c51a7c4cefb2c90cb291049a7
327KB
7795b21d0e561be4943f3949c1007f654ff2f0bd
5e98a67c09e5c975e6d6a86235294386b829ba1df7d1436a9abc9db35f224b5b
ddfcfc251a64018a8d350d39bd5b33b7aec20fec115dd20e3bf270f3041e52e2f9f0b52f620991b10a5759e656f74a407cf71cda072e520039d46519cbf623d3
Arkei is an infostealer written in C++.
Simple but powerful infostealer which was very active in 2019.
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
Modular backdoor trojan in use since 2014.
Backdoor/botnet which carries out malicious activities based on commands from a C2 server.
XMRig is a high performance, open source, cross platform CPU/GPU miner.
BIOS information is often read in order to detect sandboxing environments.
Infostealers often target stored browser data, which can include saved credentials etc.
Looks up Uninstall key entries in the registry to enumerate software on the system.