Overview

overview

10

Static

static

10

2324-135-0...ry.exe

windows7_x64

2324-135-0...ry.exe

windows10-2004_x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2324-135-0x0000000000400000-0x00000000004A3000-memory.dmp

  • Size

    652KB

  • MD5

    3383a10eddfb2ecf140a4e9e7811ab8c

  • SHA1

    c59dfa1a793b85b4f86456741884a890a34efb3f

  • SHA256

    5b3d764093bd786b0be93b0279dbf357059c97b2182f246c462e7bef0ac7c786

  • SHA512

    25a727eaceb028056a63af111509b9c943cb0c296bdbc6bb8bfc635fffacbd74c4c90be2ee616f3550b9d5287fb0cb6691a68794f7275e49a1935f69969b9282

  • SSDEEP

    1536:kzvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmdN:/SHIG6mQwGmfOQd8YhY0/EqUGN

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gi7/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 2324-135-0x0000000000400000-0x00000000004A3000-memory.dmp
    .exe windows x86


    Headers

    Sections