Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    976-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • Sample

    230203-ystzeaba38

  • MD5

    81105d07b449c728a5382aed067b1120

  • SHA1

    29ae53687cfbacdbcf6b6cd7231ecf81b0095cb6

  • SHA256

    601dd17926c587a0e821e403652220bcd82537de6777f36e91b4dc1405304c04

  • SHA512

    3d9e725ed0ead5410a51b04e350a3fc6e06ef15dfca4b96ec1590dfaf4f89e488690e8b3a058fdedbe9f6974fe03cb44a8417a50d53ea19bcccfc452b146c32a

  • SSDEEP

    3072:MSHIG6mQwGmfOQd8YhY0/EqUGySHIG6mQwGmfOQd8YhY0/ENUGz:Mcd6bUfFdXThUPcd6bUfFdXT6Ue

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.147/kelly/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

    Tasks