Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1916-209-0x00000000004139DE-mapping.dmp

  • Size

    756KB

  • MD5

    41acb678774f313655aee148d19a508a

  • SHA1

    6bbc703264ef87607d18d3484a78ff086aeb9e64

  • SHA256

    b83ca82968b39e38e4fbbbbeb9ad98638bf28a4e8c4cb996afe62647b4d55b8b

  • SHA512

    1df6bfb74a10677601c7aa073b11854c4ba8616a8729873174776fd53441a3c312992524fa74281a65ee9d3789a5c0bf2cf637bbb3d6bde4e789cdf4561c7157

  • SSDEEP

    3072:5SHIG6mQwGmfOQd8YhY0/EqUG8SHIG6mQwGmfOQd8YhY0/ENUGN:5cd6bUfFdXThUVcd6bUfFdXT6UI

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gh11/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1916-209-0x00000000004139DE-mapping.dmp