arkei | 2a89f870741672e607f4ca012d62232a0f01f3118ac9c7806350bbcb66aacb63 | Triage

Sharing

General

Target

dc9638797945d14e2c23faae542dea99
Size

4.9MB
Sample

240321-zn37ysaa72
MD5

dc9638797945d14e2c23faae542dea99
SHA1

17826b49f13863998448a5895ed70e207f388e75
SHA256

2a89f870741672e607f4ca012d62232a0f01f3118ac9c7806350bbcb66aacb63
SHA512

5b8cc115f04ffdc3c3715b8f2cbffa1e45b37ca9c79cf8a5781f971faa92ff27a15d22331de59633afae7970672431d272cee05bcca88cea518a07b4e5c1e555
SSDEEP

98304:JYzevfLqT5D1UHNV8FfZodptWb7/uJop9QbULSeqSbFDTSQztRBGhnmCTKcZR9Cv:JZa5D9z6I/uJgRGXeFiwtRJCTKcZR8sG

Score

10^/10

arkei stealer

Malware Config

Extracted

Family

arkei

C2

95.181.157.6/3Wy90FKGCj.php

Targets

- Target
  
  dc9638797945d14e2c23faae542dea99
- Size
  
  4.9MB
- MD5
  
  dc9638797945d14e2c23faae542dea99
- SHA1
  
  17826b49f13863998448a5895ed70e207f388e75
- SHA256
  
  2a89f870741672e607f4ca012d62232a0f01f3118ac9c7806350bbcb66aacb63
- SHA512
  
  5b8cc115f04ffdc3c3715b8f2cbffa1e45b37ca9c79cf8a5781f971faa92ff27a15d22331de59633afae7970672431d272cee05bcca88cea518a07b4e5c1e555
- SSDEEP
  
  98304:JYzevfLqT5D1UHNV8FfZodptWb7/uJop9QbULSeqSbFDTSQztRBGhnmCTKcZR9Cv:JZa5D9z6I/uJgRGXeFiwtRJCTKcZR8sG
Score

10^/10

arkei stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2