Overview

overview

10

Static

static

10

5088-133-0...ry.exe

windows7_x64

5088-133-0...ry.exe

windows10-2004_x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5088-133-0x0000000000400000-0x00000000004A3000-memory.dmp

  • Size

    652KB

  • MD5

    0f7a8cb82cc6d0929266f5243d950b07

  • SHA1

    ad907364da5dfe3fabb5f5a38b5cf3880594ce32

  • SHA256

    12ae83fb7b7e0f1b8e78757c60348f5727b8530c07706055a4386f5a708afd71

  • SHA512

    68ceba8c4a7bcf4bee34cecd63e2c7ca372ea103521d15bbb6792362905e8fe9e31fca20e408881c307f1a3fb1a294c1e2d41551926f766d182386da21e153cd

  • SSDEEP

    1536:kzvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmdJ:/SHIG6mQwGmfOQd8YhY0/EqUGJ

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gh18/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 5088-133-0x0000000000400000-0x00000000004A3000-memory.dmp
    .exe windows x86


    Headers

    Sections