lokibot | b018d689d866fd3fb05684da7b77ed41011b0d884ff6a4cb91eb4e9b0adbe4da | Triage

Sharing

General

Target

1648-68-0x0000000000400000-0x00000000004A2000-memory.dmp
Size

648KB
Sample

220704-kpz5csfgfr
MD5

380019ac3710344ba1f570bc48ec08bf
SHA1

c275db6ca9147d67b84a706761dd0c99d5313e09
SHA256

b018d689d866fd3fb05684da7b77ed41011b0d884ff6a4cb91eb4e9b0adbe4da
SHA512

ec1c81a5d7adc52bf6084523570a0699c5d7f96e97d5c7051501767cbdc39f0792df35a95a48bf58f08d05b92260843ed76a307e286fd59b23af01fb54d216d1

Score

10^/10

lokibot

Malware Config

Extracted

Family

lokibot

C2

http://198.187.30.47/p.php?id=62167220789801499

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

- Target
  
  1648-68-0x0000000000400000-0x00000000004A2000-memory.dmp
- Size
  
  648KB
- MD5
  
  380019ac3710344ba1f570bc48ec08bf
- SHA1
  
  c275db6ca9147d67b84a706761dd0c99d5313e09
- SHA256
  
  b018d689d866fd3fb05684da7b77ed41011b0d884ff6a4cb91eb4e9b0adbe4da
- SHA512
  
  ec1c81a5d7adc52bf6084523570a0699c5d7f96e97d5c7051501767cbdc39f0792df35a95a48bf58f08d05b92260843ed76a307e286fd59b23af01fb54d216d1
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2