Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1292-75-0x0000000000240000-0x000000000025B000-memory.dmp

  • Size

    108KB

  • MD5

    da45e442813305e7f9db841a89482e33

  • SHA1

    b00a2f43fea3871f6b8622e70849773cbf5f2d6d

  • SHA256

    4c5c421c4a9a3926f9d487ff40bb46aa2d62680aaa3530ffc0a6b393d140684f

  • SHA512

    a0512258227055bd05c1dd5564e38f6e40cfe062dd4667b73f2ff85fc4d37b7589c74a0b0b66999e9048a910770ffdd18ac5206e18146c519171c52b11285f53

  • SSDEEP

    1536:wleD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:9DMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://185.246.220.85/fresh/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1292-75-0x0000000000240000-0x000000000025B000-memory.dmp