Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1736-83-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    9b812dda56eaf95e6e583c616b30c84e

  • SHA1

    269207b6e87d4f4ae5470ff531f2bf5ffdce3931

  • SHA256

    28a6590ce3664c6f85d65e285d5b130c2aed1beb219659feecbdf93efa4e4025

  • SHA512

    0926ffe72117fa2aa111067688f707b591be8a6775a912a6c3609962889d291b7f42b9d475d5820139f61fc081196a236cff42f0313f8e412f8d0a75b319d765

  • SSDEEP

    3072:USHIG6mQwGmfOQd8YhY0/E8UGHSHIG6mQwGmfOQd8YhY0/ErUGx:Ucd6bUfFdXTvUKcd6bUfFdXTsUs

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.147/tonyspecial/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1736-83-0x00000000004139DE-mapping.dmp