Overview

overview

10

Static

static

10

1980-103-0...ry.exe

windows7-x64

1

1980-103-0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    1980-103-0x0000000000400000-0x00000000004A2000-memory.dmp

  • Size

    648KB

  • MD5

    ae6055344acf93e51734eda83fcdb1b6

  • SHA1

    ea406853e8b5ffaa91efb3a65886a340607d2061

  • SHA256

    b53ddc86c36549e27f55e6191196d5c84b16eba7ffb8d485fdd64d6b96f58439

  • SHA512

    560bc8349bacf9f77acb6fe526297dc5db6cd66a8fc5221bfddc4e9bc210e13521bdb48f82017358bd8efc2244d7407dfdb6126edd6090c19c5c788686db48a2

  • SSDEEP

    1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqHIzmd:nSHIG6mQwGmfOQd8YhY0/EOUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://208.67.105.148/sung/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1980-103-0x0000000000400000-0x00000000004A2000-memory.dmp
    .exe windows x86


    Headers

    Sections