Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1408-55-0x00000000001B0000-0x00000000001CB000-memory.dmp

  • Size

    108KB

  • MD5

    37d8e13f7c2683c7db231f496a1fab83

  • SHA1

    a05438ecd09e34ea043f8b1651b111ae058b3767

  • SHA256

    f63054075b0af0d5108bf1e6ad12a9f3d2ce442eb842dbf9a823a33583a75508

  • SHA512

    4f3c1f082b7112000d6ad1a3e394ec181d8d2ebaa0d435e1687fd7eda186e25c33d4e8c9e6af737ad6e6ee7768b5d6812709041ff05b4e60573b6e8f6821eeac

  • SSDEEP

    1536:wlND3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:uDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.164/kung/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1408-55-0x00000000001B0000-0x00000000001CB000-memory.dmp