Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1188-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    15cc13ca260396e44d4b3dbc0c445c66

  • SHA1

    8de65a18e26345454267e105c0e5006840614e98

  • SHA256

    1752ed9bd20ab1467efaeef7f65d693cd59c44fe14c8c0a2b5264c2db18d6e71

  • SHA512

    537d44f491b61420909490cfde87a973e2e18398fda6c05ba882cfd48f8f4f0aaec0069f98b421b9545b1603c34e60793fa827fa20ec570b73bdf0b57b891c63

  • SSDEEP

    3072:oSHIG6mQwGmfOQd8YhY0/EqUG8SHIG6mQwGmfOQd8YhY0/E8UG5:ocd6bUfFdXThUZcd6bUfFdXT7Us

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://162.213.249.190/?1zVKJFh880sWxDKag7keBgEa7OtXS24

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1188-69-0x00000000004139DE-mapping.dmp