arkei | c2f0d3581c8b2a009e075be9bcffc081507608f5f2663e3be2e6fbe2c4c0d93c | Triage

Sharing

General

Target

1784-54-0x0000000000400000-0x000000000043D000-memory.dmp
Size

244KB
Sample

221120-vawhqsed31
MD5

589d4c265b0672eaf7979279c0c1a1e7
SHA1

9940b3d0291086b57af86bf583229cc52bf44a91
SHA256

c2f0d3581c8b2a009e075be9bcffc081507608f5f2663e3be2e6fbe2c4c0d93c
SHA512

e66c180750cb5d97c698a84d75e416a8359dd55795a30e7a9827505655eaca16dc2d72ff7a92189720a0f287bf2e21917fc5d69ff50e32f9f004c1e6748b1795
SSDEEP

3072:Um/E8k9ZjpIL+zNch12KbAwSaSOJSp8teb8EG:N/E8k91zz6/tA8EG

Score

10^/10

arkei marsstealer default stealer

Malware Config

Extracted

Family

marsstealer

Botnet

Default

C2

data.topababa.com/gate.php

Targets

- Target
  
  1784-54-0x0000000000400000-0x000000000043D000-memory.dmp
- Size
  
  244KB
- MD5
  
  589d4c265b0672eaf7979279c0c1a1e7
- SHA1
  
  9940b3d0291086b57af86bf583229cc52bf44a91
- SHA256
  
  c2f0d3581c8b2a009e075be9bcffc081507608f5f2663e3be2e6fbe2c4c0d93c
- SHA512
  
  e66c180750cb5d97c698a84d75e416a8359dd55795a30e7a9827505655eaca16dc2d72ff7a92189720a0f287bf2e21917fc5d69ff50e32f9f004c1e6748b1795
- SSDEEP
  
  3072:Um/E8k9ZjpIL+zNch12KbAwSaSOJSp8teb8EG:N/E8k91zz6/tA8EG
Score

10^/10

arkei stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

defaultmarsstealer

behavioral1

behavioral2