Overview

overview

10

Static

static

ca2900926d...39.exe

windows7-x64

10

ca2900926d...39.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ca2900926df66ed59aaacbd5a3394b39.exe

  • Size

    625KB

  • Sample

    221125-jjn98sfb3x

  • MD5

    ca2900926df66ed59aaacbd5a3394b39

  • SHA1

    966543e1babb946d8581f80c1613ff38ba8a9081

  • SHA256

    837a755371d9da370735e9ae34e6405d328e7c1bcdfcb4ed0744aa03a2bbe447

  • SHA512

    77966f9c56c48f4937d27abb050452bbbf9d0d03ef6643a98a8bfb3d2e7a20d9490ac254f37aedb8e3b68f7b8f3aae88c3dc2446eb27ddbe534b6e5ff728666c

  • SSDEEP

    12288:p+lsOL/GXh8L74mBfNUstzoQDgAAmWWiGqLlmUFjb/n6pUy3rUNVJNT:wM+L74mBfNUstzoMPvEcUjb633r8JN

Score
10/10
lokibotcollectionspywarestealertrojan

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gl16/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

    • Target

      ca2900926df66ed59aaacbd5a3394b39.exe

    • Size

      625KB

    • MD5

      ca2900926df66ed59aaacbd5a3394b39

    • SHA1

      966543e1babb946d8581f80c1613ff38ba8a9081

    • SHA256

      837a755371d9da370735e9ae34e6405d328e7c1bcdfcb4ed0744aa03a2bbe447

    • SHA512

      77966f9c56c48f4937d27abb050452bbbf9d0d03ef6643a98a8bfb3d2e7a20d9490ac254f37aedb8e3b68f7b8f3aae88c3dc2446eb27ddbe534b6e5ff728666c

    • SSDEEP

      12288:p+lsOL/GXh8L74mBfNUstzoQDgAAmWWiGqLlmUFjb/n6pUy3rUNVJNT:wM+L74mBfNUstzoMPvEcUjb633r8JN

    Score
    10/10
    lokibotcollectionspywarestealertrojan

    • Lokibot

      Lokibot is a Password and CryptoCoin Wallet Stealer.

      trojanspywarestealerlokibot

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses Microsoft Outlook profiles

      collection

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks