General
-
Target
1000-83-0x00000000004139DE-mapping.dmp
-
Size
752KB
-
MD5
7a25ba8ae4d6d027b3aed5414dfa13de
-
SHA1
7d39ad34153c785e31f08a09a60dd514d6992b8a
-
SHA256
7a3f1b50b5d1e4741abe7a69a474edd98ccf8f47437fa898f3dae84b39359f39
-
SHA512
53e5bb58faf6e3c363c8b6247ab36d2edad5c93b6c39c1fc3484047896741459752aed9bebe4b903fe7ac3cfa83ff980ffeafff4594f519bf085e89a1adee1eb
-
SSDEEP
3072:oSHIG6mQwGmfOQd8YhY0/E+UGKSHIG6mQwGmfOQd8YhY0/E9UGp:ocd6bUfFdXTpUvcd6bUfFdXTOUk
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
http://208.67.105.162/smart/five/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Signatures
-
Lokibot family
Files
-
1000-83-0x00000000004139DE-mapping.dmp