General
-
Target
1192-66-0x0000000000400000-0x00000000004A2000-memory.dmp
-
Size
648KB
-
MD5
6f869b0bb49b829abe05f0e3e98e017a
-
SHA1
48983fa8614f056f631729f0b29a44ad2a91ceb8
-
SHA256
4e4a0aec3504c9f91052a9167e54212f74b783b58f8aa443d0660fd3804cdb23
-
SHA512
2ea66a46aeb858c384fbff431b353e800a08017c15c447ae8587f78c20b1a97f397baa94887361f7628389e8752d11c68f538513a8cefacc41239bd07c5b920d
-
SSDEEP
1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:nSHIG6mQwGmfOQd8YhY0/EqUG
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
http://batlxt.org/blL0/pin.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Signatures
-
Lokibot family
Files
-
1192-66-0x0000000000400000-0x00000000004A2000-memory.dmp
Headers
Sections