Extracted

• • Target

    7ff6db698e42f1e0226e53c665495440ad2fe012ddc34195c7b3404b218575a5

  • Size

    586KB

  • MD5

    7a738171cc2628e844e9de6f5876e37a

  • SHA1

    5b5fc9d1e437bf0b32cc36db271964b65e4abebe

  • SHA256

    7ff6db698e42f1e0226e53c665495440ad2fe012ddc34195c7b3404b218575a5

  • SHA512

    1849a4de78aa5525c91e174f2efc92ca226c573499e95896366b9c97e0a441d3d0168ae296a511b9881a17bef3efac7b5fbd30c69825326e813f56c977d462e8

  • SSDEEP

    12288:kXUeWDouHH1JJ2iN2bDRZj7108kpwbUZZaS6dEF+f/qxkejwFGf8Tu6:kXUehu1j1UJZuvqUs3dEFJreGUTR

  Score

  10^/10

  lokibotcollectionspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1