arkei | e7ff308afaaf87a6a7393e6f72aa6c8aa50b14348e9e3e416f1432e0e78dc52a | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004_x64

Sharing

General

Target

e7ff308afaaf87a6a7393e6f72aa6c8aa50b14348e9e3e416f1432e0e78dc52a
Size

276KB
Sample

220116-w3ftesgbep
MD5

1cf165219b007cdd28abc0461e57c88c
SHA1

fb21ad6108a07707010e2b95b8b0368259fad956
SHA256

e7ff308afaaf87a6a7393e6f72aa6c8aa50b14348e9e3e416f1432e0e78dc52a
SHA512

37e4b0074349daa17b16e01c65f9e62ffc459e1b06eb56a37a329be585e52f9aae7a8e1d67d839482a699383c8d03dc62aa9e1ff458f56e977109bb97fed0a77

Score

10^/10

arkei default stealer

Static task

static1

Behavioral task

behavioral1

Sample

e7ff308afaaf87a6a7393e6f72aa6c8aa50b14348e9e3e416f1432e0e78dc52a.exe

Resource

win10v2004-en-20220112

arkei default stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

arkei

Botnet

Default

C2

http://file-file-host4.com/tratata.php

Targets

- Target
  
  e7ff308afaaf87a6a7393e6f72aa6c8aa50b14348e9e3e416f1432e0e78dc52a
- Size
  
  276KB
- MD5
  
  1cf165219b007cdd28abc0461e57c88c
- SHA1
  
  fb21ad6108a07707010e2b95b8b0368259fad956
- SHA256
  
  e7ff308afaaf87a6a7393e6f72aa6c8aa50b14348e9e3e416f1432e0e78dc52a
- SHA512
  
  37e4b0074349daa17b16e01c65f9e62ffc459e1b06eb56a37a329be585e52f9aae7a8e1d67d839482a699383c8d03dc62aa9e1ff458f56e977109bb97fed0a77
Score

10^/10

arkei default stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
- Suspicious use of NtCreateProcessExOtherParentProcess
- Arkei Stealer Payload
  stealer
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

arkeidefaultstealer

© 2018-2024

Terms | Privacy