General
-
Target
1100-69-0x00000000004139DE-mapping.dmp
-
Size
752KB
-
MD5
258ccd5da077f3299141bf9757a31325
-
SHA1
8e404d01b08812d76b74245f53ac0b1fb2ea328e
-
SHA256
c0e29280adba0ead53ffab365f4d450941da583865e643078845835232fd508b
-
SHA512
19db452b6ec6473ab89bb4a7b7da7e96759490ca7c2252f0d659f4b85133d9e9000173143f072a3c36e3152e5bd31f049e07f614413f8b8a8938ae1da181c2db
-
SSDEEP
3072:USHIG6mQwGmfOQd8YhY0/EqUGRSHIG6mQwGmfOQd8YhY0/E/UGr:Ucd6bUfFdXThUscd6bUfFdXTQUa
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
https://sempersim.su/ha8/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Signatures
-
Lokibot family
Files
-
1100-69-0x00000000004139DE-mapping.dmp