Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1744-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    87c19e16cdea67b5b4604de783c15425

  • SHA1

    b5dfe54f1925c5b09bef2d89a027b5fd1db159d3

  • SHA256

    7e994e91f3040c6ffb1468d35721e887be1d01c1945652c565a23f69e16b1655

  • SHA512

    1ddb78b814bf2a9a3f958f8c1bab66238a6f32a209c372afc4edd2e60933a9d244253aa3e850fc44247ee1e4efaa8835968134fc3830c0588892ef0c608ce478

  • SSDEEP

    3072:oSHIG6mQwGmfOQd8YhY0/EqUGaSHIG6mQwGmfOQd8YhY0/EnUG3:ocd6bUfFdXThU7cd6bUfFdXTQUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://192.64.118.167/profile.php?id=05315

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1744-69-0x00000000004139DE-mapping.dmp