General
-
Target
828-65-0x0000000000400000-0x00000000004A2000-memory.dmp
-
Size
648KB
-
MD5
3522c7a93ae132ed6260e31bec416857
-
SHA1
6c8f682aff4d7a3bfd52a280033199d982914ad3
-
SHA256
24b7b31580e974cbbf8b3d0788a9c9127c37138e15bf88f3ab693f7f60ad4f3d
-
SHA512
1c27356257db296793ad23a87cffeed6938fba660ca00b2c831c178a01284e9137ac6ff7be268080ed74c844fcab587d1a3a65eb9fabf1d3178807700cdaf43e
-
SSDEEP
1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/Eq4jIzmd:nSHIG6mQwGmfOQd8YhY0/EbUG
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
http://208.67.105.161/durtch/five/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Signatures
-
Lokibot family
Files
-
828-65-0x0000000000400000-0x00000000004A2000-memory.dmp
Headers
Sections