Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    668-83-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    3c02f6cd4435d0fc13bb775b0210c84f

  • SHA1

    559e4116b2f44e857052b4dd98a13774df7eaeb4

  • SHA256

    b2eb9f90b3768d2028a1c63f4e763878452139f4b0aa863fccb7f07a3ae7e0e0

  • SHA512

    1b843935fabf463020cd80dd829341d472d886528123e5b8a2b1eed6f09e9c9743c6c567161fb72ff039ddc42dbf2ea71e5eaf8e2dfc53823bbc05061fec8dfe

  • SSDEEP

    3072:oSHIG6mQwGmfOQd8YhY0/EqUG+SHIG6mQwGmfOQd8YhY0/ENUGr:ocd6bUfFdXThU7cd6bUfFdXTKUW

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://208.67.105.161/donstan/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 668-83-0x00000000004139DE-mapping.dmp