Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1788-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    2db62b5c48d73e8553e44c91c6a2422b

  • SHA1

    b088069849aef0037c4725dc86cb7d861db471ec

  • SHA256

    2db6d5ac15457987b7ee3c5c6c69eebc9d2273ab0d1b8e07812e5486fc7cb72f

  • SHA512

    714716ebe6cb475ab7644de5b9b594fefe9f46876ec831c568677f42d5ec657924b251bec9758a5dc7e4e504548ffecb3a2f7e81599d90ae957514dfbe993617

  • SSDEEP

    3072:oSHIG6mQwGmfOQd8YhY0/EqUGPSHIG6mQwGmfOQd8YhY0/ENUGu:ocd6bUfFdXThUGcd6bUfFdXT6Uf

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://157.245.36.27/~dokterpol/?page=081599145

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1788-69-0x00000000004139DE-mapping.dmp