arkei | f89ac77290ec6163c90573ba47a0df3ad796cef562dc2fe7b11462e7745612da | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004_x64

Sharing

General

Target

f89ac77290ec6163c90573ba47a0df3ad796cef562dc2fe7b11462e7745612da
Size

335KB
Sample

220117-ndwjkshgb2
MD5

48a30514ec65518840884b9d6d3611b1
SHA1

5f87b47dcdd54e0e77359a52aca1f0d65b275130
SHA256

f89ac77290ec6163c90573ba47a0df3ad796cef562dc2fe7b11462e7745612da
SHA512

de35ba7aa222f6222122c8855dfd61204ff961ec722b40a7ed45daf061c3957db1de0c9253c12c314f071ca50995e7ae339284ddfa10890137fed34cc607cd76

Score

10^/10

arkei default stealer

Static task

static1

Behavioral task

behavioral1

Sample

f89ac77290ec6163c90573ba47a0df3ad796cef562dc2fe7b11462e7745612da.exe

Resource

win10v2004-en-20220112

arkei default stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

arkei

Botnet

Default

C2

http://file-file-host4.com/tratata.php

Targets

- Target
  
  f89ac77290ec6163c90573ba47a0df3ad796cef562dc2fe7b11462e7745612da
- Size
  
  335KB
- MD5
  
  48a30514ec65518840884b9d6d3611b1
- SHA1
  
  5f87b47dcdd54e0e77359a52aca1f0d65b275130
- SHA256
  
  f89ac77290ec6163c90573ba47a0df3ad796cef562dc2fe7b11462e7745612da
- SHA512
  
  de35ba7aa222f6222122c8855dfd61204ff961ec722b40a7ed45daf061c3957db1de0c9253c12c314f071ca50995e7ae339284ddfa10890137fed34cc607cd76
Score

10^/10

arkei default stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
- Suspicious use of NtCreateProcessExOtherParentProcess
- Arkei Stealer Payload
  stealer
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

arkeidefaultstealer

© 2018-2024

Terms | Privacy