arkei | 0cf10c94da0e111784d403eced0612f82bb54edd13a72721904c547b250693f7 | Triage

Sharing

General

Target

2576-106-0x0000000000400000-0x000000000043D000-memory.dmp
Size

244KB
Sample

230912-tys7vagg52
MD5

84789ae0eb0c2b479866a6fa3ba32733
SHA1

aeaaaa774f0ab78788df562a7a3dcfb1f2c9b66c
SHA256

0cf10c94da0e111784d403eced0612f82bb54edd13a72721904c547b250693f7
SHA512

88cde07fc7d95ab23bdbfbc9be6a56d13a16e97af31bd0a013a7d456f850f8978576be1b2e159f1607316fa584c3cb6907cc8d9694d7960315d8c4703644a4e7
SSDEEP

3072:Um/E8k9ZjpIn+zNch12KbAwSaStJSp8Vb8EG:N/E8k91rz6/tq8EG

Score

10^/10

arkei marsstealer default stealer

Malware Config

Extracted

Family

marsstealer

Botnet

Default

C2

www.criminalaffair.com/wp-admin/admin-ajax.php

Targets

- Target
  
  2576-106-0x0000000000400000-0x000000000043D000-memory.dmp
- Size
  
  244KB
- MD5
  
  84789ae0eb0c2b479866a6fa3ba32733
- SHA1
  
  aeaaaa774f0ab78788df562a7a3dcfb1f2c9b66c
- SHA256
  
  0cf10c94da0e111784d403eced0612f82bb54edd13a72721904c547b250693f7
- SHA512
  
  88cde07fc7d95ab23bdbfbc9be6a56d13a16e97af31bd0a013a7d456f850f8978576be1b2e159f1607316fa584c3cb6907cc8d9694d7960315d8c4703644a4e7
- SSDEEP
  
  3072:Um/E8k9ZjpIn+zNch12KbAwSaStJSp8Vb8EG:N/E8k91rz6/tq8EG
Score

10^/10

arkei stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

defaultmarsstealer

behavioral1

behavioral2