General
-
Target
3dc0912c50fdca52090e727e2417fdd32e17ea19fdfa38960eb80a909b34455c
-
Size
315KB
-
Sample
220116-aaz6psfba8
-
MD5
2e5e2af425a8ee7ee3c97d2528b6bf69
-
SHA1
661dff97d2ea3ca3eb8c7d5d05107eae21f897f2
-
SHA256
3dc0912c50fdca52090e727e2417fdd32e17ea19fdfa38960eb80a909b34455c
-
SHA512
3cb5d794a24c34604fa876d549801a50a84e1e33359a5b07dc4ae4cd00927efc95580234e3302c96f067cff4d5c466ab6104fe04bd62ea528a0c235d02589d7d
Static task
static1
Malware Config
Extracted
arkei
Default
http://file-file-host4.com/tratata.php
Targets
-
-
Target
3dc0912c50fdca52090e727e2417fdd32e17ea19fdfa38960eb80a909b34455c
-
Size
315KB
-
MD5
2e5e2af425a8ee7ee3c97d2528b6bf69
-
SHA1
661dff97d2ea3ca3eb8c7d5d05107eae21f897f2
-
SHA256
3dc0912c50fdca52090e727e2417fdd32e17ea19fdfa38960eb80a909b34455c
-
SHA512
3cb5d794a24c34604fa876d549801a50a84e1e33359a5b07dc4ae4cd00927efc95580234e3302c96f067cff4d5c466ab6104fe04bd62ea528a0c235d02589d7d
-
Suspicious use of NtCreateProcessExOtherParentProcess
-
Arkei Stealer Payload
-