Overview

overview

10

Static

static

10

1756-65-0x...ry.exe

windows7-x64

1

1756-65-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    1756-65-0x0000000000400000-0x00000000004A2000-memory.dmp

  • Size

    648KB

  • MD5

    c0f9c67f6e24484cc0dc2954d8bf7e00

  • SHA1

    88a8516b98b8c84347ff9cfd50e5d7cb36f0ca0b

  • SHA256

    6863629f82361fe34d3360617339fe9d74f5a82f9bc98c8e67259e0790194b1f

  • SHA512

    7651081f1e563049af92ebe10f21731eb21078145275f2764cf382713223ba21ae77e74fa69c5fc298e6e2e939bde2a56d0563a5a34e26350b4120ee4a2b3948

  • SSDEEP

    1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqYIzmd:nSHIG6mQwGmfOQd8YhY0/ENUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://wexno.us/ho/sk/ironm.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1756-65-0x0000000000400000-0x00000000004A2000-memory.dmp
    .exe windows x86


    Headers

    Sections