Q-Feeds logo

Products & Services

Solutions

Pricing

Company

About

Label with EU stars, 'Made in Europe' text.
~
Label with EU stars, 'Made in Europe' text.
~

Firewall integrations

9

Fortinet

Elevate the power of your Fortinet Fortigate Firewall using by adding our Intelligence.

9

Palo Alto

Palo Alto Firewalls can be hardened with our threat intelligence as well.

9

Sophos XGS

Enhance the Sophos XGS Firewall with our threat intelligence.

9

OPNsense

Enhance your OPNsense Firewall with our threat intelligence using the native plugin.

SIEM integrations

9

Splunk

Splunk is a great platform, but without the right Threat Intelligence it's just a log server. Try our threat intelligence today. 

9

Microsoft Sentinel

One of the most used SIEM solutions should be enriched with the right Intelligence. At Q-Feeds you're at the right place!

9

Other

Luckily there are many other SIEM vendors whom support 3rd party threat intelligence.

Threat Intelligence Portal

9

Darkweb Monitoring

Darkweb monitoring is one of our services, not only for threat intelligence but also for you most important assets.

9

Threat Lookup

With Threat Lookup you get full insights in our IOC database, including full MITRE ATT&K mapping.

9

External Attack Surface Management

A toolset to check your external facing assets exposed on the internet

9

Vulnerability Scanner

A comprehensive vulnerability scanner which can scan your infrastructure and web applications

9

Brand Protection

Protect your brand for look-a-likes and potential phishing attempts

Services

9

TAXII Feeds & Server Software

TAXII/STIX2.1 standard. Both in form of feeds and server software available

9

Implementation

Need help with implementations? No worries, we have a strong network of partners who are able to help you.

Solutions

9

Enrich my SIEM

Elevate the power of your SIEM solution using by adding our Intelligence.

9

Enrich my Firewall

Firewalls can be hardened with our threat intelligence as well.

9

Prevent phishing

Enhance your protection against phishing

9

Achieve compliancy

Achieve compliancy by correlating the best threat intelligence to your logs

Futuristic eye design with circuits and geometric shapes.

Company

9

About

Read here all about Q-Feeds

9

News and Updates

Cybersecurity news and updates about us

9

Publications

All of our media coverage in one place

9

Become a reseller

Strengthen your portfolio with our comprehensive reseller program

9

Partner locator

Find our certified partners here

9

Contact

For all your questions or inquiries

Neural network representation of a human brain

Support

9

My Account

Access your account and manage your licenses

9

Downloads & Manuals

On this page you find white papers and manuals

9

Knowledge base

Our knowledge base full of implementation instructions

9

Start for free

Start your cyber security intelligence journey here

Abstract geometric wireframe human head

Arkanix Stealer expands its reach: A deep dive into data theft and the MaaS referral initiative

Feb 19, 2026 | Threat Intelligence Research

New Malware as a Service: Arkanix Stealer Emerges

Threat intelligence from Kaspersky has unveiled a new malware strain called “Arkanix Stealer,” primarily functioning as a malware-as-a-service (MaaS). This stealer includes various features aimed at collecting sensitive information, particularly from users involved in cryptocurrency and gaming.

Arkanix raises concerns because it operates through a comprehensive control panel that allows users to adjust payloads and access statistics. The malware comprises both a C++ executable and a Python version, enabling a flexible distribution strategy. The exact method of initial infection remains unclear, though it likely involves phishing techniques, as inferred from file names associated with the malware. Once executed, the loader downloads the Arkanix payload, which is packed with various data collection capabilities—from system information and browser data to specific information from Telegram and Discord.

In addition to collecting general user data, Arkanix particularly targets cryptocurrency wallet credentials and online banking information. Its design includes built-in mechanisms for obfuscation and self-spreading through social media platforms. The campaign appears to have been short-lived, with reports indicating that the control panel may have already been taken down.

Why This Matters

The functionality of Arkanix Stealer poses significant risks, particularly for users engaged in cryptocurrency transactions and uncertain online security practices. The malware not only steals sensitive data but also exploits communication platforms, making it a versatile threat. Defenders must remain vigilant and proactive in addressing potential phishing attacks and the rise of such malware.

Enhanced threat intelligence and monitoring tools, like SIEMs and vulnerability scanners, can mitigate risks from such malware campaigns. Implementing multi-factor authentication and regular system updates can further safeguard personal and financial information.

Indicators of Compromise (IOCs)

Domains:

  • arkanix[.]pw (IP: 195.246.231.60)
  • arkanix[.]ru (IP: 172.67.186.193)

File Hashes:

  • Python Loader: MD5 208fa7e01f72a50334f3d7607f6b82bf
  • Python Stealer: MD5 af8fd03c1ec81811acf16d4182f3b5e1
  • Native Stealer: MD5 a3fc46332dcd0a95e336f6927bae8bb7
  • Additional Native Sample: MD5 3283f8c54a3ddf0bc0d4111cc1f950c0

Click here for the full article

Try our Intelligence today!

Streamline your security operations with a free Q-Feeds trial and see the difference.

Activate free access

Other articles