Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1104-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • Sample

    230205-b1cc1aba9w

  • MD5

    b7f1f9f9e707f82c3234c13c6c3581df

  • SHA1

    1bb376a790ee17124f135130932171e14d8a4f67

  • SHA256

    e99e403d6f4a1412f92bfd62bd0dba6acf204ef4ca24723a5418881abb42efb0

  • SHA512

    180044dbec8fc56dc2a76b10ea90234df45e38f28a1206d48b8319cce402c030546471638c76c87427fe1f116dc33ac68f1ec26a1292ed00e8b4fd9eebdc342a

  • SSDEEP

    3072:oSHIG6mQwGmfOQd8YhY0/EqUGySHIG6mQwGmfOQd8YhY0/EVUGz:ocd6bUfFdXThUPcd6bUfFdXTOUe

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.147/kelly/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

    Tasks