Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1808-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • Sample

    230201-v5s14aba42

  • MD5

    a3814ab079b63bc70b41833ea0e0fda5

  • SHA1

    601a1f4e1e98e0ec9d641bd52fa135f300ce8ade

  • SHA256

    f94b7f57d8de0708427601b0e632877f11b92abaffad0db1c6437d6de1301cd9

  • SHA512

    fb8f6df15da0294677cd34744ccfbc8a53d54cdd4429d46bbf34b8c121121657bd713165af01e35e135f792fb8dfaa7a757dffe85bda7de2b2d06f3694322bb7

  • SSDEEP

    3072:MSHIG6mQwGmfOQd8YhY0/EqUGySHIG6mQwGmfOQd8YhY0/E1UG0:Mcd6bUfFdXThUPcd6bUfFdXTyUV

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.147/kelly/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

    Tasks