Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1940-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    8dd181cf8a7224379c245612830b0e5d

  • SHA1

    973ae23761092ee9bcb5acad540756ec330fb3cf

  • SHA256

    1ba716ab1a624a9ab992049da9df23f8657edbae1cd1be3d3ceaf4019f8f2b10

  • SHA512

    b4a222773795731fdd5a2b72f1bcf80e81caaa99af71250b5446b1526b6d061f20e360a22575c566612077c31081c61b0649c59ace70c99d998593d417736570

  • SSDEEP

    3072:MSHIG6mQwGmfOQd8YhY0/EqUGCSHIG6mQwGmfOQd8YhY0/ENUGf:Mcd6bUfFdXThUTcd6bUfFdXT6UO

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gl9/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1940-69-0x00000000004139DE-mapping.dmp