Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1996-80-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    5c937a42f72fb17d700fe094a0bd764c

  • SHA1

    1e3bf2d8872f3731b75f78546f8f61af7d7c9986

  • SHA256

    7c30512cb8f9bdacb0dc441deba7004ad46e8df56ca6812abc548479dfa7be54

  • SHA512

    6556f028b0980b6e86271c47b84386b49c6dc6cbd3b9f05f1520b1148f7cd5aec0af6a8e18d0e554d7f096f5f4101e5dfa673566a8bac09090d77b00a8128274

  • SSDEEP

    3072:MSHIG6mQwGmfOQd8YhY0/EqUGCSHIG6mQwGmfOQd8YhY0/E4UGb:Mcd6bUfFdXThUfcd6bUfFdXTbUO

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://208.67.105.161/jungleone/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1996-80-0x00000000004139DE-mapping.dmp