arkei | 86b1514e74faa7b799c6afb16873202fe67ef1d28081b7ac5dacd49ca60130fd | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004_x64

Sharing

General

Target

86b1514e74faa7b799c6afb16873202fe67ef1d28081b7ac5dacd49ca60130fd
Size

280KB
Sample

220117-fh67waggd5
MD5

db4ad185fc751256fce38457da4add14
SHA1

2dbf190c70f9b73c048a86e139eb37e42df9ac1d
SHA256

86b1514e74faa7b799c6afb16873202fe67ef1d28081b7ac5dacd49ca60130fd
SHA512

6a564fc293350f53541edcf807483434bf0b09d85c3523e95e321786fad534d36da7def7451da842ca9d9f2e579f14c458bdaf97e3bd3e07efcb0b34bc7039a6

Score

10^/10

arkei default stealer

Static task

static1

Behavioral task

behavioral1

Sample

86b1514e74faa7b799c6afb16873202fe67ef1d28081b7ac5dacd49ca60130fd.exe

Resource

win10v2004-en-20220112

arkei default stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

arkei

Botnet

Default

C2

http://file-file-host4.com/tratata.php

Targets

- Target
  
  86b1514e74faa7b799c6afb16873202fe67ef1d28081b7ac5dacd49ca60130fd
- Size
  
  280KB
- MD5
  
  db4ad185fc751256fce38457da4add14
- SHA1
  
  2dbf190c70f9b73c048a86e139eb37e42df9ac1d
- SHA256
  
  86b1514e74faa7b799c6afb16873202fe67ef1d28081b7ac5dacd49ca60130fd
- SHA512
  
  6a564fc293350f53541edcf807483434bf0b09d85c3523e95e321786fad534d36da7def7451da842ca9d9f2e579f14c458bdaf97e3bd3e07efcb0b34bc7039a6
Score

10^/10

arkei default stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
- Suspicious use of NtCreateProcessExOtherParentProcess
- Arkei Stealer Payload
  stealer
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

arkeidefaultstealer

© 2018-2024

Terms | Privacy