General

  • Target

    1240-71-0x0000000000400000-0x00000000004A2000-memory.dmp

  • Size

    648KB

  • Sample

    230131-l2gn8ahf5x

  • MD5

    bbe43ff554974ed621d63ec893693a59

  • SHA1

    c48255a5855b71c08f85153a51bd3f866477d110

  • SHA256

    aca05c390eb6857d4447f99187230c013f8368fb959014169ee675ef83689cfc

  • SHA512

    43a4c9e81a5028647fec6490a464abafd5f92b7418afeca1f281e17370082be066fb0916dd49cb20a68d38d917a70d409ee48c7bd15c8f8618f0b196ab8fdb4d

  • SSDEEP

    1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqeIzmd:nSHIG6mQwGmfOQd8YhY0/EzUG

Score
10/10

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.147/line/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

    • Target

      1240-71-0x0000000000400000-0x00000000004A2000-memory.dmp

    • Size

      648KB

    • MD5

      bbe43ff554974ed621d63ec893693a59

    • SHA1

      c48255a5855b71c08f85153a51bd3f866477d110

    • SHA256

      aca05c390eb6857d4447f99187230c013f8368fb959014169ee675ef83689cfc

    • SHA512

      43a4c9e81a5028647fec6490a464abafd5f92b7418afeca1f281e17370082be066fb0916dd49cb20a68d38d917a70d409ee48c7bd15c8f8618f0b196ab8fdb4d

    • SSDEEP

      1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqeIzmd:nSHIG6mQwGmfOQd8YhY0/EzUG

    Score
    3/10

MITRE ATT&CK Matrix

Tasks