Overview

overview

10

Static

static

1

Siparis_li...30.exe

windows7-x64

10

Siparis_li...30.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Siparis_listesi_P.O._nr_30596130.iso

  • Size

    292KB

  • Sample

    230330-kkaznsbg68

  • MD5

    8c3604965e74072c5439307e0494192d

  • SHA1

    b6378d53b5167b45702628883bb7368f970c5080

  • SHA256

    907bedcdb5f837bf5c3383aa22804f75f0ed0a08f499197dd9b2f92e6a9247e4

  • SHA512

    6163d79edda689adce7f147b4e60b1032bb7a037630a22bba44af87b337dcff6c97c9f85de5246f02bd0baff8a81a97b4c263c76950f586809783ba990587eae

  • SSDEEP

    6144:BCCDDkxavrq0KbsBf+IxRhBiX7rXjqi6RAzqw:YCDAxaTibs9+kRhYx6R

Score
10/10
lokibotcollectionspywarestealertrojan

Malware Config

Extracted

Family

lokibot

C2

http://efvsx.cf/PWS/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

    • Target

      Siparis_listesi_P.O._nr_30596130.exe

    • Size

      445KB

    • MD5

      bdcb87e544cf11768ca0c83289218a0f

    • SHA1

      a9d61aff2172c4b95da9cb8aa86f04b189efce14

    • SHA256

      0643d9151be45b3ca83fdec91392d05085c6e959c0d4badedb419775b4220eb8

    • SHA512

      2492e47a82aa44803fb8a2797afad8ffb2a0394607ee23ced3fc711778a6e981342033a098cbae8bfe649064674f821db29012ad32dbf0b547b78fd00bb984c7

    • SSDEEP

      6144:0/jTmMPCCDDsxavrq08bsBD+IxRhBi77rqjS7+5rdTxJs91IoTyb5:0fICDwxaTkbs9+kRhYySaHJs9SoTy1

    Score
    10/10
    lokibotcollectionspywarestealertrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks