arkei | 71457dd5169674639c40ac3de5717570b70acef944dea60ffe51eecfde5c5494 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004_x64

Sharing

General

Target

71457dd5169674639c40ac3de5717570b70acef944dea60ffe51eecfde5c5494
Size

277KB
Sample

220116-zn2n5agdbr
MD5

2cb4ab25fe8c402a796ee6a3a5098a06
SHA1

a0b244bd735aa26e8c905f7ddf883b4440866dba
SHA256

71457dd5169674639c40ac3de5717570b70acef944dea60ffe51eecfde5c5494
SHA512

5ae3f86176247c38104a55839898cbc36b5425d49e6a3ed58f00a3db6b03fe212b2edaec754562a94fdc086cf9116247b5079fe2b08cda3d6b7a1c3599fb5606

Score

10^/10

arkei default stealer

Static task

static1

Behavioral task

behavioral1

Sample

71457dd5169674639c40ac3de5717570b70acef944dea60ffe51eecfde5c5494.exe

Resource

win10v2004-en-20220112

arkei default stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

arkei

Botnet

Default

C2

http://file-file-host4.com/tratata.php

Targets

- Target
  
  71457dd5169674639c40ac3de5717570b70acef944dea60ffe51eecfde5c5494
- Size
  
  277KB
- MD5
  
  2cb4ab25fe8c402a796ee6a3a5098a06
- SHA1
  
  a0b244bd735aa26e8c905f7ddf883b4440866dba
- SHA256
  
  71457dd5169674639c40ac3de5717570b70acef944dea60ffe51eecfde5c5494
- SHA512
  
  5ae3f86176247c38104a55839898cbc36b5425d49e6a3ed58f00a3db6b03fe212b2edaec754562a94fdc086cf9116247b5079fe2b08cda3d6b7a1c3599fb5606
Score

10^/10

arkei default stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
- Suspicious use of NtCreateProcessExOtherParentProcess
- Arkei Stealer Payload
  stealer
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

arkeidefaultstealer

© 2018-2024

Terms | Privacy