Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1952-55-0x00000000003B0000-0x00000000003CB000-memory.dmp

  • Size

    108KB

  • MD5

    48345b1def9900777e8d20d3fd468d47

  • SHA1

    37b156875b11aaf335098ad6a7b036a840e4a9b1

  • SHA256

    e771bbccc974c50a82565e4cc537e417c4789f745aa21cd254481d409819cd63

  • SHA512

    c0f613e63b4a8a1de4c017dbae08edd38ec0b0e74c32742acd322a295027479e55cae2297597cd9e62e2fc192d0ea9441179952c457e55d22c1cb38481b304c3

  • SSDEEP

    1536:wlPD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:4DMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://185.246.220.60/shen/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1952-55-0x00000000003B0000-0x00000000003CB000-memory.dmp