Overview

overview

10

Static

static

10

1796-65-0x...ry.exe

windows7-x64

1

1796-65-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    1796-65-0x0000000000400000-0x00000000004A2000-memory.dmp

  • Size

    648KB

  • MD5

    ae45bc4bfbb5e2a4e00c51d002cbe3c7

  • SHA1

    aac275341b9fbed297ec791c4e1d726b2ada8201

  • SHA256

    bdb418ef82b04e7bba4661e36914ec7f80200fa5f5f1d48816f54890644468d1

  • SHA512

    24170032db9050610333d9a5440c88b81cc71979b6557c20f23b449cc964786a1726a06a978bccdd0b554fa1f6348858f06046d3c0de1a63189c36e1d5f8b19d

  • SSDEEP

    1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqCIzmd:nSHIG6mQwGmfOQd8YhY0/EHUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gl9/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1796-65-0x0000000000400000-0x00000000004A2000-memory.dmp
    .exe windows x86


    Headers

    Sections