lokibot | f98b945515c7e01280f39b86d9200143c01e8edb2ad242b9425c12a2c0f5c35d | Triage

Sharing

General

Target

1876-68-0x0000000000400000-0x00000000004A2000-memory.dmp
Size

648KB
Sample

220707-3dy22agdcm
MD5

064de3630a60f6d2eed504ca506d76a0
SHA1

50632ae4f163bfad267b3901d9b6d26e09a482fc
SHA256

f98b945515c7e01280f39b86d9200143c01e8edb2ad242b9425c12a2c0f5c35d
SHA512

5ceded48a97533bd2afbc4bdaa118824621c0eca67259972dc8bb24e360183978dccff731c1c8351c8bfb7001d0a478fcc216d8e5b63ce5776939f23936c01ab

Score

10^/10

lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gi14/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

- Target
  
  1876-68-0x0000000000400000-0x00000000004A2000-memory.dmp
- Size
  
  648KB
- MD5
  
  064de3630a60f6d2eed504ca506d76a0
- SHA1
  
  50632ae4f163bfad267b3901d9b6d26e09a482fc
- SHA256
  
  f98b945515c7e01280f39b86d9200143c01e8edb2ad242b9425c12a2c0f5c35d
- SHA512
  
  5ceded48a97533bd2afbc4bdaa118824621c0eca67259972dc8bb24e360183978dccff731c1c8351c8bfb7001d0a478fcc216d8e5b63ce5776939f23936c01ab
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2