Overview

overview

10

Static

static

10

1948-75-0x...ry.exe

windows7_x64

1

1948-75-0x...ry.exe

windows10-2004_x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1948-75-0x0000000000400000-0x00000000004A2000-memory.dmp

  • Size

    648KB

  • Sample

    220706-qaf1tsdaem

  • MD5

    d11ed4a8b03929dd4c23fcc4122b6ca6

  • SHA1

    5d248b4f80e04a4ff94f13eaf816073a698608a7

  • SHA256

    cee920662262e1b1e1750367ffe8f7490e7c5ba1f9a87e5db74d0b1fe1be04e3

  • SHA512

    3b7957a1be14be46070468efd5741961f6f3844a46d19a5b7dc09fba31d3c666aa23d112da6a4b5ce7270a7a1da1881e6e30294d5f6c3b52f0dd1b07893128cf

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://198.187.30.47/p.php?id=26212652247088341

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

    • Target

      1948-75-0x0000000000400000-0x00000000004A2000-memory.dmp

    • Size

      648KB

    • MD5

      d11ed4a8b03929dd4c23fcc4122b6ca6

    • SHA1

      5d248b4f80e04a4ff94f13eaf816073a698608a7

    • SHA256

      cee920662262e1b1e1750367ffe8f7490e7c5ba1f9a87e5db74d0b1fe1be04e3

    • SHA512

      3b7957a1be14be46070468efd5741961f6f3844a46d19a5b7dc09fba31d3c666aa23d112da6a4b5ce7270a7a1da1881e6e30294d5f6c3b52f0dd1b07893128cf

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks