arkei | 0d4d63953a61a637751e9d6e70b2c2b85e96d82937a515c9259d65d3c365e665 | Triage

Sharing

General

Target

Builded.exe
Size

159KB
Sample

220818-wje3sacgf2
MD5

d80f9d3e0426edbc6e0472c1ed398907
SHA1

892a3c3d7ee8e6848767cbea2c454572c1a93fde
SHA256

0d4d63953a61a637751e9d6e70b2c2b85e96d82937a515c9259d65d3c365e665
SHA512

a993a3141d480f0daaea0287f513f1133df08ff165f00c6b514363c0a6a862f2c1322e96ec9e7d9a6c9631255595c84386ba457bf4be4c14fd3ed4cb7aabe757
SSDEEP

3072:UpxUyGSzNlhedcQlM9DxxyvRhFBnSrbHRXdZczYXhVcsd4fxEvLJSp8Bb8EG:CSSz3qAyvRh3nSrbH1wzijcUOxkH8EG

Score

10^/10

arkei default spyware stealer

Malware Config

Extracted

Family

arkei

Botnet

Default

Targets

- Target
  
  Builded.exe
- Size
  
  159KB
- MD5
  
  d80f9d3e0426edbc6e0472c1ed398907
- SHA1
  
  892a3c3d7ee8e6848767cbea2c454572c1a93fde
- SHA256
  
  0d4d63953a61a637751e9d6e70b2c2b85e96d82937a515c9259d65d3c365e665
- SHA512
  
  a993a3141d480f0daaea0287f513f1133df08ff165f00c6b514363c0a6a862f2c1322e96ec9e7d9a6c9631255595c84386ba457bf4be4c14fd3ed4cb7aabe757
- SSDEEP
  
  3072:UpxUyGSzNlhedcQlM9DxxyvRhFBnSrbHRXdZczYXhVcsd4fxEvLJSp8Bb8EG:CSSz3qAyvRh3nSrbH1wzijcUOxkH8EG
Score

10^/10

arkei default spyware stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

arkeidefaultspywarestealer