Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1796-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    b90b30e8326aeaf84fa10eacb57bb107

  • SHA1

    cbeaa269ea333b6d74b6443f72413c2618b07716

  • SHA256

    3c88575b840a4fa817ae19b0b6aa01e4578109dc35fbf71902fc4d5da218d66c

  • SHA512

    302b306a6e0b76d57d9a266d5a89286925f5914249b5ed917239a88c2ce60875194e596e9dfeffed3e42a58fa647e964c9c0e5f4fa6ff75acbc8bd57bb3ad469

  • SSDEEP

    3072:oSHIG6mQwGmfOQd8YhY0/EqUGWSHIG6mQwGmfOQd8YhY0/ENUGb:ocd6bUfFdXThUPcd6bUfFdXT6Uy

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gk14/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1796-69-0x00000000004139DE-mapping.dmp