Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1636-83-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    d368c4d46578c86cc594b6fe20ae605b

  • SHA1

    fd9e8214b81b03bd5fa4f80d3b64954220272ac4

  • SHA256

    9e534d65f82f55379a754b99240e8d61a881ce9d3a3138e5593ae2ad7e2e5a64

  • SHA512

    7371da8d107d8c29b074be339f858dea0558196e70470818e6541277ac74337660ffac390cf2d3d2e815132b3ccee30730b33c246e7f01084df7c0f421036ec7

  • SSDEEP

    3072:MSHIG6mQwGmfOQd8YhY0/EqUGnSHIG6mQwGmfOQd8YhY0/ENUGK:Mcd6bUfFdXThU+cd6bUfFdXT6Uj

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gk11/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1636-83-0x00000000004139DE-mapping.dmp