arkei | 6d0a6c080f126bc758cedccfacbb1dfb5339170d906bee713472173b9d55de6b | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004_x64

Sharing

General

Target

6d0a6c080f126bc758cedccfacbb1dfb5339170d906bee713472173b9d55de6b
Size

280KB
Sample

220117-eayebsgff5
MD5

a0bde8508b5a0a2c14821c23c9c50c4c
SHA1

9070fa392f61e6b1b6c6fca030ed66bb5cb03d1c
SHA256

6d0a6c080f126bc758cedccfacbb1dfb5339170d906bee713472173b9d55de6b
SHA512

c01b6747af9e0154904a95bc310f3a37bfa7eacc7f7eb0c86ec83e616eb9e16d05ad7ee82ad212ed8f6c41fb3dbed337819b9de9aed3d3e35b0e94f1bd0b6a9e

Score

10^/10

arkei default stealer

Static task

static1

Behavioral task

behavioral1

Sample

6d0a6c080f126bc758cedccfacbb1dfb5339170d906bee713472173b9d55de6b.exe

Resource

win10v2004-en-20220112

arkei default stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

arkei

Botnet

Default

C2

http://file-file-host4.com/tratata.php

Targets

- Target
  
  6d0a6c080f126bc758cedccfacbb1dfb5339170d906bee713472173b9d55de6b
- Size
  
  280KB
- MD5
  
  a0bde8508b5a0a2c14821c23c9c50c4c
- SHA1
  
  9070fa392f61e6b1b6c6fca030ed66bb5cb03d1c
- SHA256
  
  6d0a6c080f126bc758cedccfacbb1dfb5339170d906bee713472173b9d55de6b
- SHA512
  
  c01b6747af9e0154904a95bc310f3a37bfa7eacc7f7eb0c86ec83e616eb9e16d05ad7ee82ad212ed8f6c41fb3dbed337819b9de9aed3d3e35b0e94f1bd0b6a9e
Score

10^/10

arkei default stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
- Suspicious use of NtCreateProcessExOtherParentProcess
- Arkei Stealer Payload
  stealer
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

arkeidefaultstealer

© 2018-2024

Terms | Privacy