Extracted

• • Target

    4a0c373241cad8aa84c9018b7f50f660.exe

  • Size

    747KB

  • MD5

    4a0c373241cad8aa84c9018b7f50f660

  • SHA1

    fc5713001d2cde484e59ae988fb66b2409c235e8

  • SHA256

    408df2ad8c4ca7daca906870171422b9cef7d7416a5e7fbc67990cd04d5e91b2

  • SHA512

    122709f73eee1855c5abf9992e8790eba321650044883eb013916d37e6ebc37cf87e50f09b8983f003672a156180f5d2d8df5d3f95a1b0a3ba43119eb0a067de

  • SSDEEP

    12288:qFZFKDir+IVP6RAliAJWCJw98Nnma71tOEuXmUKXc1aCosDifYub26:qOk+IpcvCq2cUtLlqaCoZfYuB

  Score

  10^/10

  lokibotcollectionspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2