Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1472-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    303c3a3cd65f45541a60e00a10c0380e

  • SHA1

    e34dcfa8ab3767b6d9e8a36e58e5bfb5965a73d6

  • SHA256

    c8fff5c2fb6221305abe77f243ee294c3c1f891d4d3d40189c838f0cd739fa5c

  • SHA512

    a053fd76155d60447d3755870bcbfe0b5f34017c7af54ae03c4d22ebd3d304a0186c295f33bf4b4e6038735879bd526e75578efea4121a78d116b1251a19983f

  • SSDEEP

    3072:YSHIG6mQwGmfOQd8YhY0/EqUGDSHIG6mQwGmfOQd8YhY0/EnUG+:Ycd6bUfFdXThU6cd6bUfFdXT8Uf

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://208.67.105.162/smart/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1472-69-0x00000000004139DE-mapping.dmp