Overview

overview

10

Static

static

10

1196-134-0...ry.exe

windows7-x64

1196-134-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1196-134-0x0000000000400000-0x00000000004A3000-memory.dmp

  • Size

    652KB

  • MD5

    187cc9065aa9f1fefe2058de1ce99da4

  • SHA1

    c85f844e63452b9aa1ffa2485412278d4d319dc0

  • SHA256

    13b9fb89456c288768b13c14ab97b6a909749fc7c13a74d39383fe2176267408

  • SHA512

    aeca2fa9b9da960587113c7942660080aad80bb0b1ae05275f8c1e6393ebe0540bd15a13c280f09e08009347c731acec5bd600633ef6b99e23cf10faf1739174

  • SSDEEP

    1536:kzvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmdl:/SHIG6mQwGmfOQd8YhY0/EqUGl

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gk6/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1196-134-0x0000000000400000-0x00000000004A3000-memory.dmp
    .exe windows x86


    Headers

    Sections