Overview

overview

10

Static

static

10

2472-139-0...ry.exe

windows7-x64

2472-139-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2472-139-0x0000000000400000-0x00000000004A3000-memory.dmp

  • Size

    652KB

  • MD5

    5be98648b00a667b87fb1c03579f1b74

  • SHA1

    c5870ec25a030c0402ae9295c48df0880bfce775

  • SHA256

    35b7b9aafc659599a6949022014f240e368be6cb796d0a17380b158a023c360d

  • SHA512

    c12a4ec05a0ce225583a5f4d4211a7bf5658f985cd5dee167deb81c958cba1b020eaac4fe7becf38ed16a79b8b57e30b526ec5bc52b2998cf9c597d413e2f472

  • SSDEEP

    1536:kzvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmdLx:/SHIG6mQwGmfOQd8YhY0/EqUGLx

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gk6/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 2472-139-0x0000000000400000-0x00000000004A3000-memory.dmp
    .exe windows x86


    Headers

    Sections