General
-
Target
4728-238-0x0000000000400000-0x00000000004A2000-memory.dmp
-
Size
648KB
-
MD5
06221ca4ac3b83a7086b59646d76a08b
-
SHA1
abb3742462386ca6f5d763e502f97c4eed011201
-
SHA256
5a1f8250069b8bf1773a4b6dfca0a3bb4e5112569800efa1e2a2433fbf69072a
-
SHA512
ea70c8eee1066fc8a98fc4073c494d6a270b9a728ad7f86068a74eb3ea7191ad3a81386341147cade0896ac1a853aa1aea493661b55ea168db2f3548a69adf1b
-
SSDEEP
1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqTIzmd:nSHIG6mQwGmfOQd8YhY0/EuUG
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
http://208.67.105.161/durtch/five/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Signatures
-
Lokibot family
Files
-
4728-238-0x0000000000400000-0x00000000004A2000-memory.dmp
Headers
Sections