Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4656-191-0x00000000004139DE-mapping.dmp

  • Size

    756KB

  • MD5

    4a79fa8ca7ec8d5d4fa5983aff2b6769

  • SHA1

    ac3b8ccdbe30b89712d5be22a751ce7ad2cf21df

  • SHA256

    57f9df98eec7a8421aebbb27ea793330eb92db8757d5508efeaf6377e824e859

  • SHA512

    7d1dac6995ad2f823fa34f5e3143c42f6112140887e077d1675637bcc9f9bb5c4464a910b14d60056cf7252b4e6385bbb12620a7227a4f5ba1bb249283769a0d

  • SSDEEP

    3072:rSHIG6mQwGmfOQd8YhY0/EqUGASHIG6mQwGmfOQd8YhY0/ENUG1:rcd6bUfFdXThUZcd6bUfFdXT6U4

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://208.67.105.162/perez/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 4656-191-0x00000000004139DE-mapping.dmp