Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1788-68-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    89bebd2a88abdd3ef7af5e0caddc38ad

  • SHA1

    d80d9f665b71f84f3ab12903f7b47fb5ca68992a

  • SHA256

    45a2604d1f603e2c18f3f83b63893cfbcf57cce3e27e5e4ea75b8bb14f658de3

  • SHA512

    a1f062ff3fe9e3256ba869b0aa0c60f232030abdc311ab628e49d92a12d0b11a901d2f7a646152e50ccb8f19be648025419ed704ce7ea3c2d147fbfa0549c8b3

  • SSDEEP

    3072:sSHIG6mQwGmfOQd8YhY0/EqUGdSHIG6mQwGmfOQd8YhY0/EnUG4:scd6bUfFdXThUUcd6bUfFdXT8UZ

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gk13/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1788-68-0x00000000004139DE-mapping.dmp