General
-
Target
SecuriteInfo.com.Win32.PWSX-gen.7894.18041.exe
-
Size
271KB
-
Sample
221129-mm81laea3x
-
MD5
94eee2b3f0cdd96443ce5b40fdfbb478
-
SHA1
a3e3f0c0667b69f8df853cb8d81b4beb7cdf4b0c
-
SHA256
3b035fe66db6dd547d83303dad5af3f830ad102703324606c09e0e17076495d6
-
SHA512
eb65979eb2106ec14cc4cb1b33291166dd77046ecb9b0733758d50fbf9046381c52c96c4276fead52c85b450e2afa1fbf101f33804022ca59497270f565ffe5c
-
SSDEEP
6144:yswLlfy4t93basZbuG3qpUgo9CGjk6yllL:eJfvP3basL3soFjjQd
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Win32.PWSX-gen.7894.18041.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Win32.PWSX-gen.7894.18041.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
lokibot
http://171.22.30.164/mous/five/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Targets
-
-
Target
SecuriteInfo.com.Win32.PWSX-gen.7894.18041.exe
-
Size
271KB
-
MD5
94eee2b3f0cdd96443ce5b40fdfbb478
-
SHA1
a3e3f0c0667b69f8df853cb8d81b4beb7cdf4b0c
-
SHA256
3b035fe66db6dd547d83303dad5af3f830ad102703324606c09e0e17076495d6
-
SHA512
eb65979eb2106ec14cc4cb1b33291166dd77046ecb9b0733758d50fbf9046381c52c96c4276fead52c85b450e2afa1fbf101f33804022ca59497270f565ffe5c
-
SSDEEP
6144:yswLlfy4t93basZbuG3qpUgo9CGjk6yllL:eJfvP3basL3soFjjQd
Score10/10-
Accesses Microsoft Outlook profiles
-