Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    860-56-0x0000000000220000-0x000000000023B000-memory.dmp

  • Size

    108KB

  • MD5

    dd2381192d0049554705b293cee46c89

  • SHA1

    457dc1c93238f555d1b6d11fcfcc2f794ee9d959

  • SHA256

    05ddc67d92f53d818e45018261b733545bbb98ff4c444bb911060ef6f850ba89

  • SHA512

    786fa3297c8c442fd113c80339dc9885e56e08207d2763b61c11101b7382cc68e06db0725dd40aaabc359a58e09192c4c363c99f1098b5ca9579155c4bf60e45

  • SSDEEP

    1536:wlhD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:qDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

https://sempersim.su/ha11/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 860-56-0x0000000000220000-0x000000000023B000-memory.dmp