General
-
Target
520-84-0x0000000000400000-0x0000000001462000-memory.dmp
-
Size
16.4MB
-
MD5
d96b6b3ee8e40943568b850ff852c6d7
-
SHA1
6236e29b1e911bc3b0feab59f0cf09d6b953d4fb
-
SHA256
727edff6d68faabb345cebf779c4eb205b19d485830d393c6ea42e945d0a05d6
-
SHA512
f17e5850d249466dab66d717652d069831b4de6a57a8603dc010476e668cbb92de81970d1b23b227a42f5051aa7d9b8e5be4778e0d63ed6d4242be1b868283a4
-
SSDEEP
1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqrIzmd:nSHIG6mQwGmfOQd8YhY0/ESUG
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
http://208.67.105.148/tallest/five/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Signatures
-
Lokibot family
Files
-
520-84-0x0000000000400000-0x0000000001462000-memory.dmp
Headers
Sections