General
-
Target
1728-63-0x00000000004139DE-mapping.dmp
-
Size
648KB
-
MD5
b55c31b291a7675ddbc6a2f981a0f68c
-
SHA1
dfa56566ea96a61ad7a562fa514511032e088462
-
SHA256
8010aa57fb61b2ed3377946caa5ca10647769281e391cfb73bb6259e4860889c
-
SHA512
5fa8d3a2012877fcae45e748ec9317e7d925349c49c9eb6a36b31666b0dbbc9ac6673d1e49d6521184cdbc41408ac02ff8140a2e02ed19cf5a847e994192ac72
-
SSDEEP
1536:bzvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/Eq9Izmdj:oSHIG6mQwGmfOQd8YhY0/EgUGj
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
http://tjfr.ga/five/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Signatures
-
Lokibot family
Files
-
1728-63-0x00000000004139DE-mapping.dmp