arkei | d61cb80d7ca4d5e9716341bc774bcdb0b8aaf6455fb983da9b6f7cff6b37b4c7 | Triage

Sharing

General

Target

d3581897d6620d612f3ad58a7f1130aa_JaffaCakes118
Size

292KB
Sample

241207-ym55gs1jat
MD5

d3581897d6620d612f3ad58a7f1130aa
SHA1

9f362bc380b3521531835e0b2e0f9223724055a7
SHA256

d61cb80d7ca4d5e9716341bc774bcdb0b8aaf6455fb983da9b6f7cff6b37b4c7
SHA512

991887e1bcae9085fd6fa6b04eeeaa76be8d26d5034762512bdb624ae25a9dba07ef7556e37cfd79cb071b9fc28b15b965c26c28bf7f40558d1197ea14d7af60
SSDEEP

3072:ouhyqfUE+kvHTz96K6ScKcNEUzZELeUoPxwAnjaPM76DBQ+E05:0qfR+2Tz96KncKukLvBl5

Score

10^/10

arkei default discovery stealer

Malware Config

Extracted

Family

arkei

Botnet

Default

C2

87.98.153.120/JWFiKu9bjC.php

Targets

- Target
  
  d3581897d6620d612f3ad58a7f1130aa_JaffaCakes118
- Size
  
  292KB
- MD5
  
  d3581897d6620d612f3ad58a7f1130aa
- SHA1
  
  9f362bc380b3521531835e0b2e0f9223724055a7
- SHA256
  
  d61cb80d7ca4d5e9716341bc774bcdb0b8aaf6455fb983da9b6f7cff6b37b4c7
- SHA512
  
  991887e1bcae9085fd6fa6b04eeeaa76be8d26d5034762512bdb624ae25a9dba07ef7556e37cfd79cb071b9fc28b15b965c26c28bf7f40558d1197ea14d7af60
- SSDEEP
  
  3072:ouhyqfUE+kvHTz96K6ScKcNEUzZELeUoPxwAnjaPM76DBQ+E05:0qfR+2Tz96KncKukLvBl5
Score

10^/10

arkei default discovery stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
- Arkei family
  arkei
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

arkeidefaultdiscoverystealer

behavioral2

arkeidefaultdiscoverystealer