General
-
Target
c8c599f922c090c3e74101e7a8f0926369b2fd63f318ab24767307cf2cb221a6
-
Size
342KB
-
Sample
220415-pldjeacad5
-
MD5
65397eee9af5d1566a75a09799ed17cb
-
SHA1
20f77c85efd364c1f60607f8380a9798d92c645f
-
SHA256
c8c599f922c090c3e74101e7a8f0926369b2fd63f318ab24767307cf2cb221a6
-
SHA512
1e747f71fa51ea7fefb8bb68aad2d450c5f35c5a1948fd933c08477109161503a2263732553510ec36a8494d8e0145742f477829105427869a3ff26f7eb01f77
Static task
static1
Behavioral task
behavioral1
Sample
c8c599f922c090c3e74101e7a8f0926369b2fd63f318ab24767307cf2cb221a6.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
c8c599f922c090c3e74101e7a8f0926369b2fd63f318ab24767307cf2cb221a6.exe
Resource
win10v2004-en-20220113
Malware Config
Extracted
lokibot
http://sieqwarteg.com/kon/kon1/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Targets
-
-
Target
c8c599f922c090c3e74101e7a8f0926369b2fd63f318ab24767307cf2cb221a6
-
Size
342KB
-
MD5
65397eee9af5d1566a75a09799ed17cb
-
SHA1
20f77c85efd364c1f60607f8380a9798d92c645f
-
SHA256
c8c599f922c090c3e74101e7a8f0926369b2fd63f318ab24767307cf2cb221a6
-
SHA512
1e747f71fa51ea7fefb8bb68aad2d450c5f35c5a1948fd933c08477109161503a2263732553510ec36a8494d8e0145742f477829105427869a3ff26f7eb01f77
Score10/10-
Meta Stealer Stealer
Meta Stealer steals passwords stored in browsers, written in C++.
-
Accesses Microsoft Outlook profiles
-
Suspicious use of SetThreadContext
-