lokibot | e272af98ac66fa088b63aa66caeec5ea402966a2c78bb3df09d139168437cb0f | Triage

Sharing

General

Target

de41a01457573e366909c2ddb491d1f3
Size

353KB
Sample

210623-fs7geletn6
MD5

de41a01457573e366909c2ddb491d1f3
SHA1

688f8b8071d1b7bb6b333fc2526d33d20fcccd34
SHA256

e272af98ac66fa088b63aa66caeec5ea402966a2c78bb3df09d139168437cb0f
SHA512

ac956a2711b5d3a8ace47e712c9f3e32dde7bc24eb0397ebb5a0336c3f591faf42fcce112f02e5a3c963626f9a48557023b84caddd5f5cb363918d6390e2c4e8

Score

10^/10

lokibot spyware stealer trojan

Malware Config

Extracted

Family

lokibot

C2

http://manvim.co/fd2/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

- Target
  
  de41a01457573e366909c2ddb491d1f3
- Size
  
  353KB
- MD5
  
  de41a01457573e366909c2ddb491d1f3
- SHA1
  
  688f8b8071d1b7bb6b333fc2526d33d20fcccd34
- SHA256
  
  e272af98ac66fa088b63aa66caeec5ea402966a2c78bb3df09d139168437cb0f
- SHA512
  
  ac956a2711b5d3a8ace47e712c9f3e32dde7bc24eb0397ebb5a0336c3f591faf42fcce112f02e5a3c963626f9a48557023b84caddd5f5cb363918d6390e2c4e8
Score

10^/10

lokibot spyware stealer trojan
- Lokibot
  Lokibot is a Password and CryptoCoin Wallet Stealer.
  trojan spyware stealer lokibot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

lokibotspywarestealertrojan

behavioral2

lokibotspywarestealertrojan