Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1200-71-0x00000000002B0000-0x00000000002CB000-memory.dmp

  • Size

    108KB

  • MD5

    9efdf2f3cda0072bbf631ab1b05a11aa

  • SHA1

    5afdb236bd6725b4a7b3b9ce0917ec6848fb5eae

  • SHA256

    fbd1795a1a60274eea2ddee53f48e87376908170422194892f45056976a53255

  • SHA512

    286aba363624deaaf181854806b021f976cf3ba96b55625429ef4aff8e942d855b48ca1dcce570907e70a34fe279fd7c52242b6ccdb9a14d968cd3c72735aea4

  • SSDEEP

    1536:wlBD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:KDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://208.67.105.148/mous/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1200-71-0x00000000002B0000-0x00000000002CB000-memory.dmp