General
-
Target
ECO6654656434.BAT
-
Size
254KB
-
Sample
210624-m6pj6s2jm6
-
MD5
deac0654a2e5e3476aa66f856a62e0fe
-
SHA1
2fbed766b8ddaa2b593c66211679507889d7bff2
-
SHA256
dc92dc39a66515cd3422763d9dab9b0542f79c1be3a9b0b2add7a59f7ed0a182
-
SHA512
4463d5d49f4a4bebb96d9e2b57d3a2a848792d28eb7349515519d4d0147476c2135814acf924d02904b16543314d33bd2004d7a28bcfbad3d0de4025c36884b6
Static task
static1
Behavioral task
behavioral1
Sample
ECO6654656434.BAT.exe
Resource
win7v20210408
Malware Config
Extracted
lokibot
https://pakilogs2020.xyz/cc/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Targets
-
-
Target
ECO6654656434.BAT
-
Size
254KB
-
MD5
deac0654a2e5e3476aa66f856a62e0fe
-
SHA1
2fbed766b8ddaa2b593c66211679507889d7bff2
-
SHA256
dc92dc39a66515cd3422763d9dab9b0542f79c1be3a9b0b2add7a59f7ed0a182
-
SHA512
4463d5d49f4a4bebb96d9e2b57d3a2a848792d28eb7349515519d4d0147476c2135814acf924d02904b16543314d33bd2004d7a28bcfbad3d0de4025c36884b6
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-