Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1924-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    753fe470c45ba383fa68af7cab0b3590

  • SHA1

    a5fd615722f5f3a48d1490fbc3ed467c98336214

  • SHA256

    cb5da371fa8a7fc3131491898256b4b2d807b02de28ecaaa30a1cf70c42d5343

  • SHA512

    3e3bbfcabff030c9df633fbb79dffa948a1efc1fd9ebd315edf02e7b667de908c20937d95931b8e96788903a3fc1701157a55a2d22de50e466fdd223b804ffaa

  • SSDEEP

    3072:oSHIG6mQwGmfOQd8YhY0/EqUGiSHIG6mQwGmfOQd8YhY0/ENUGP:ocd6bUfFdXThUHcd6bUfFdXT6UK

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.164/kung/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1924-69-0x00000000004139DE-mapping.dmp