Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    3700-191-0x00000000004139DE-mapping.dmp

  • Size

    756KB

  • MD5

    f8e1edacbd899484e56fb9d3a5017312

  • SHA1

    e497ec5a3f13abdd08a14113e5b24f45a1f790ba

  • SHA256

    e50eb2f91ee717bc90c8593cef619c340f54c597dda08de3d7f5e1d920a43434

  • SHA512

    6afdfb8fbf2607fff9620811df42b91e406eefcd417da387d24980e3311fb43210b57cf5b35a7bf75a523000359c103816df41d0951a29fb928771927fe07fe9

  • SSDEEP

    3072:jSHIG6mQwGmfOQd8YhY0/EqUGCSHIG6mQwGmfOQd8YhY0/ENUGl:jcd6bUfFdXThUTcd6bUfFdXT6Us

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gl9/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 3700-191-0x00000000004139DE-mapping.dmp