Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    280-71-0x00000000004139DE-mapping.dmp

  • Size

    753KB

  • MD5

    b93ef7a639216b8779130ee5f3d489e8

  • SHA1

    1d90e34206dcfd1b7c3d56de5b262f259af9943a

  • SHA256

    c82264c9d0d8a68d31da6fc23fb9cb38634797b2201eddf5f1879ef843a32205

  • SHA512

    8cd8b24b37b63bfb8d2d634c104591edd24edf8b42d37128ad3c687d7778bc5ea1f118513039881fdb066d9e81d95c70fdff7220bc0108e335e0f902b533f7bb

  • SSDEEP

    3072:LSHIG6mQwGmfOQd8YhY0/EqUGFSHIG6mQwGmfOQd8YhY0/EoUGs:Lcd6bUfFdXThU8cd6bUfFdXT/UV

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://162.0.223.13/?bnpLdK1qC8nCN5xlQDEq5D1XsPHLRuX3RmP57RvKZTmNY

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 280-71-0x00000000004139DE-mapping.dmp