General
-
Target
1044-69-0x0000000000400000-0x00000000004A2000-memory.dmp
-
Size
648KB
-
MD5
9bc52fbec0e556e9b2b7f12e834e5a3a
-
SHA1
8dd5f9e011c7599bb3eaf3cad1578099a81ffcf1
-
SHA256
673b6f45d6eda5754d480f0fc1a2ce8b4d65755ebc184ec4858f2b583611d68e
-
SHA512
578de9674048f361a4e528aec20f4860cd27ecb2527dc9cc780cdff8b5c0157dc30774d2bc5bf6226702146224055ddbf22692d7c04d9205cb68b00b52a1cdf4
-
SSDEEP
1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:nSHIG6mQwGmfOQd8YhY0/EqUG
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
https://sempersim.su/ha25/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Signatures
-
Lokibot family
Files
-
1044-69-0x0000000000400000-0x00000000004A2000-memory.dmp
Headers
Sections