4eafa24f5ad51c35893a67f98ab5cef0d0b23cdca9daec7be1f7989b7b36d99e

General
Target

4eafa24f5ad51c35893a67f98ab5cef0d0b23cdca9daec7be1f7989b7b36d99e

Size

337KB

Sample

220126-txmnnsffh5

Score
10 /10
MD5

06a01cbb90ed2bcd7d2b1f2e7ed3d9b0

SHA1

9c34d617fd146db6a3ea0776a19994185f413e0e

SHA256

4eafa24f5ad51c35893a67f98ab5cef0d0b23cdca9daec7be1f7989b7b36d99e

SHA512

32942b0b0e25b79ff1b45223f19c34c425192c7f94738c3b457a6028e658aba4d97b842adb0f112d51bc9cb9aefadecded928400bdb2fafa03caf91dcce6afaf

Malware Config

Extracted

Family arkei
Botnet Default
C2

http://coin-file-file-19.com/tratata.php
Targets
Target

4eafa24f5ad51c35893a67f98ab5cef0d0b23cdca9daec7be1f7989b7b36d99e

MD5

06a01cbb90ed2bcd7d2b1f2e7ed3d9b0

Filesize

337KB

Score
10/10
SHA1

9c34d617fd146db6a3ea0776a19994185f413e0e

SHA256

4eafa24f5ad51c35893a67f98ab5cef0d0b23cdca9daec7be1f7989b7b36d99e

SHA512

32942b0b0e25b79ff1b45223f19c34c425192c7f94738c3b457a6028e658aba4d97b842adb0f112d51bc9cb9aefadecded928400bdb2fafa03caf91dcce6afaf

Tags

Signatures

  • Arkei

    Description

    Arkei is an infostealer written in C++.

    Tags

  • Arkei Stealer Payload

    Tags

  • Downloads MZ/PE file

  • Loads dropped DLL

  • Reads user/profile data of web browsers

    Description

    Infostealers often target stored browser data, which can include saved credentials etc.

    Tags

    TTPs

    Data from Local SystemCredentials in Files

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    Tags

    TTPs

    Data from Local SystemCredentials in Files

  • Checks installed software on the system

    Description

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    Tags

    TTPs

    Query Registry

Related Tasks

behavioral1
MITRE ATT&CK Matrix
Collection
Command and Control
    Credential Access
    Defense Evasion
      Discovery
      Execution
        Exfiltration
          Impact
            Initial Access
              Lateral Movement
                Persistence
                  Privilege Escalation
                    Tasks

                    static1

                    behavioral1

                    10/10