Overview

overview

10

Static

static

10

320-68-0x0...ry.exe

windows7-x64

1

320-68-0x0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    320-68-0x0000000000400000-0x00000000004A2000-memory.dmp

  • Size

    648KB

  • MD5

    7dc11af03da8b1e093e697cb1ef2df23

  • SHA1

    98014fce8fb952b0dd2bb5ef486944cfd6b6755e

  • SHA256

    3c9ab527f44ad3195da2b6e9d119f6fc6425920d5df93a99c18a90cbe7409eee

  • SHA512

    7ebd906ea7eb822dcf3bf05776db227eb7ca206b4b72f20a58b1af7b88520a3accf27069b572a7cf7f35c6d935b7c5cff29ea7fe8ba07fe874eb5d9cd1c373aa

  • SSDEEP

    1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:nSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gl21/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 320-68-0x0000000000400000-0x00000000004A2000-memory.dmp
    .exe windows x86


    Headers

    Sections