Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1076-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    59cc1f79563beea33ee893dd9d6b5c24

  • SHA1

    d4a754b35a81271fae767083d3b1644094e6b482

  • SHA256

    eb2f4ca3ea69131eb12bc20dc07a8faf748b5501fdf10d0d54ebadfc43489940

  • SHA512

    e681b38ffe5f15af0979d3cb35f2752ef3750690fc9d6c6fd652cc29f2bcf4e6b0bdf01a0b3bb1eacb11a32f3cbc2e5c5110981cb4db5679fcf430993050f230

  • SSDEEP

    3072:MSHIG6mQwGmfOQd8YhY0/EEUGuSHIG6mQwGmfOQd8YhY0/E/UGX:Mcd6bUfFdXTrUvcd6bUfFdXTUUu

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

https://sempersim.su/ha11/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1076-69-0x00000000004139DE-mapping.dmp