Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1112-70-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    1586519e564c0850f108f6393ee083f5

  • SHA1

    1fc0e2cd330ed3b8cad98772026ad653ec467fb4

  • SHA256

    e62028e2b8cd20a08afcdec40f9803ccef84eae77091856ef91d5b769714ddac

  • SHA512

    4f544ee68957a69e2bb3b72dd686404d6017e0bf82f966658b91665477c455e6e85e8eff5cd602bd46e89b3c90215d25350410c1d9841ea354653a165b93b214

  • SSDEEP

    3072:MSHIG6mQwGmfOQd8YhY0/EqUGqSHIG6mQwGmfOQd8YhY0/EuUGX:Mcd6bUfFdXThUbcd6bUfFdXThU2

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gk18/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1112-70-0x00000000004139DE-mapping.dmp