Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1792-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    4d530bcd0c48e71cc1b809902bda0197

  • SHA1

    75aae95d01a2eea8c9f72455f3a2d9cdb5fd7a2a

  • SHA256

    c0ea0bc4dbf212349cb86d8aa85ccceec1ea12d9cecc07fb94ff0c051e6b482c

  • SHA512

    ecfd69de00888a70c4904313dad7486d59561e7e39c33f695504766acddc1080129b5054e9b415df5dcbf8dea79a2648de983b74cdf1b5219a0c950c1b36acf9

  • SSDEEP

    3072:MSHIG6mQwGmfOQd8YhY0/EqUGqSHIG6mQwGmfOQd8YhY0/ENUGj:Mcd6bUfFdXThUbcd6bUfFdXT6U6

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://208.67.105.162/workshop/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1792-69-0x00000000004139DE-mapping.dmp