Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1724-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    103167c3ef5af114e3678c7d218d8763

  • SHA1

    8b95178182b9ccda9ce3e5a4285d06ec6e15c85c

  • SHA256

    2efaa368f95117d0fdd39145badee2af2ec0b9ab6350dea9438eddaa36104797

  • SHA512

    1158eb8483a546f42d8149c31f2de26770d8920d4dbb50dc50c68eaaac1ab79cd9ecb2a29e9a23fe69144e91730a33621121472daf8e88fd7307686334ace57f

  • SSDEEP

    3072:MSHIG6mQwGmfOQd8YhY0/EaUGbSHIG6mQwGmfOQd8YhY0/EVUGx:Mcd6bUfFdXTRUCcd6bUfFdXTKUk

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://157.245.36.27/~dokterpol/?page_id=081599145

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1724-69-0x00000000004139DE-mapping.dmp