Overview

overview

10

Static

static

10

1764-72-0x...ry.exe

windows7-x64

1

1764-72-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1764-72-0x0000000000400000-0x00000000004A2000-memory.dmp

  • Size

    648KB

  • Sample

    230126-px7xdsde92

  • MD5

    2168319fe8771733d91d58e74ff02902

  • SHA1

    14d1068308ec3d8773677362db4502daf11a35e7

  • SHA256

    b4b1fc5baf8f27c144d69d4d4f0887c81dfa6c91428d8516a57152cfcba7f247

  • SHA512

    72833dfd5acbafaef65f09a2d468ce0e603a71c003c2c40cc64f3d95eff8ce2ed4df4f317cf5e7cdfaa0b70a2490dda6f62b5888888fcb5fd739e0c9f7da8875

  • SSDEEP

    1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:nSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

https://efvsx.ga/PWS/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

    • Target

      1764-72-0x0000000000400000-0x00000000004A2000-memory.dmp

    • Size

      648KB

    • MD5

      2168319fe8771733d91d58e74ff02902

    • SHA1

      14d1068308ec3d8773677362db4502daf11a35e7

    • SHA256

      b4b1fc5baf8f27c144d69d4d4f0887c81dfa6c91428d8516a57152cfcba7f247

    • SHA512

      72833dfd5acbafaef65f09a2d468ce0e603a71c003c2c40cc64f3d95eff8ce2ed4df4f317cf5e7cdfaa0b70a2490dda6f62b5888888fcb5fd739e0c9f7da8875

    • SSDEEP

      1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:nSHIG6mQwGmfOQd8YhY0/EqUG

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks