General
-
Target
1764-72-0x0000000000400000-0x00000000004A2000-memory.dmp
-
Size
648KB
-
MD5
2168319fe8771733d91d58e74ff02902
-
SHA1
14d1068308ec3d8773677362db4502daf11a35e7
-
SHA256
b4b1fc5baf8f27c144d69d4d4f0887c81dfa6c91428d8516a57152cfcba7f247
-
SHA512
72833dfd5acbafaef65f09a2d468ce0e603a71c003c2c40cc64f3d95eff8ce2ed4df4f317cf5e7cdfaa0b70a2490dda6f62b5888888fcb5fd739e0c9f7da8875
-
SSDEEP
1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:nSHIG6mQwGmfOQd8YhY0/EqUG
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
https://efvsx.ga/PWS/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Signatures
-
Lokibot family
Files
-
1764-72-0x0000000000400000-0x00000000004A2000-memory.dmp
Headers
Sections