arkei | 2d4c396f289f986d2bce539bdaecdc47c7fe86e7a6cfdd53334e8e6c0285ce1a | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004_x64

Sharing

General

Target

2d4c396f289f986d2bce539bdaecdc47c7fe86e7a6cfdd53334e8e6c0285ce1a
Size

324KB
Sample

220115-ylbt9afcep
MD5

7d32d2090a70e3d3334756c107c9b3f4
SHA1

79e0ab9fdadc83ad1430b04d7e35e48c1b90e89b
SHA256

2d4c396f289f986d2bce539bdaecdc47c7fe86e7a6cfdd53334e8e6c0285ce1a
SHA512

211edd48cb5f33611bfe3cc64bb7619cf478a54e461a5b019cdb4e28682a998f39ef3885b37dd40c2974c9c9da9cb65477fa85dbac79567d5d986d07024294df

Score

10^/10

arkei default stealer

Static task

static1

Behavioral task

behavioral1

Sample

2d4c396f289f986d2bce539bdaecdc47c7fe86e7a6cfdd53334e8e6c0285ce1a.exe

Resource

win10v2004-en-20220112

arkei default stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

arkei

Botnet

Default

C2

http://file-file-host4.com/tratata.php

Targets

- Target
  
  2d4c396f289f986d2bce539bdaecdc47c7fe86e7a6cfdd53334e8e6c0285ce1a
- Size
  
  324KB
- MD5
  
  7d32d2090a70e3d3334756c107c9b3f4
- SHA1
  
  79e0ab9fdadc83ad1430b04d7e35e48c1b90e89b
- SHA256
  
  2d4c396f289f986d2bce539bdaecdc47c7fe86e7a6cfdd53334e8e6c0285ce1a
- SHA512
  
  211edd48cb5f33611bfe3cc64bb7619cf478a54e461a5b019cdb4e28682a998f39ef3885b37dd40c2974c9c9da9cb65477fa85dbac79567d5d986d07024294df
Score

10^/10

arkei default stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
- Suspicious use of NtCreateProcessExOtherParentProcess
- Arkei Stealer Payload
  stealer
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

arkeidefaultstealer

© 2018-2024

Terms | Privacy