General
-
Target
4088-190-0x00000000004139DE-mapping.dmp
-
Size
756KB
-
Sample
230130-qext5sad95
-
MD5
6a1994d8afaf6e078ad33b5adaaa3d63
-
SHA1
760e37e0265705e0b5f8a4dde473736070d95920
-
SHA256
23cabce991a66e9f9fbb23f1f5ef120d367228fc23d2dd3540ae04f9ebf7736f
-
SHA512
78a029b4b2ebf487a69a8e5f6f4b086e61ee83962d48796ab5827f30bf0a421606cdfe89e118592bb218b2a514b09e57188554ac31cefa5a591e83cefd249a2c
-
SSDEEP
3072:4SHIG6mQwGmfOQd8YhY0/EqUGZSHIG6mQwGmfOQd8YhY0/ENUGy:4cd6bUfFdXThU4cd6bUfFdXT6UD
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
http://208.67.105.148/zang/five/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php