Overview

overview

10

Static

static

10

564-137-0x...ry.exe

windows7-x64

1

564-137-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    564-137-0x0000000000400000-0x0000000000615000-memory.dmp

  • Size

    2.1MB

  • MD5

    34e22e1ed65bf53ce7875f384da27411

  • SHA1

    3ef8ada432d33b338803488ab0f77e0e714fef28

  • SHA256

    97f5449858be3c40517286b74df1e54bce07fa0d1557478944131ceb5bae6a7b

  • SHA512

    77a443bcdb26ee3d2a6ea00551c6b3ebc6fac054ed65ceed7c28753e05cdd4aa368c4550a1356d027fdb935449a4f0cb58c3322e6d9d12e8c7f00779769cb1f7

  • SSDEEP

    1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqTIzmd:nSHIG6mQwGmfOQd8YhY0/EmUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://185.246.220.85/biggy/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 564-137-0x0000000000400000-0x0000000000615000-memory.dmp
    .exe windows x86


    Headers

    Sections