Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-85-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    36a383f59363b1998c6baeccc0843ec6

  • SHA1

    a006abc47fde65cad5c2edb75535b5b77b0e3f4e

  • SHA256

    8508558300ad5355e14ec196ad8f5b6bd2b361203ea0c979bf2e9087e690a11b

  • SHA512

    e7894ca0cab32fda366c31e7de0912d971c15ec7d76f1a32fc76d7051a435a4c9b60501a23321d56d3f761fd49079abb6f3b57bba8ca3d434e208cee561caa04

  • SSDEEP

    3072:USHIG6mQwGmfOQd8YhY0/EzUGgSHIG6mQwGmfOQd8YhY0/EwUGM:Ucd6bUfFdXTsUhcd6bUfFdXTDUN

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.164/yan/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 2024-85-0x00000000004139DE-mapping.dmp