General
-
Target
1012-79-0x0000000000400000-0x00000000004A2000-memory.dmp
-
Size
648KB
-
MD5
6c42b1e7863c39f1ee8a119b017e4850
-
SHA1
4e278ef1c856db9f8d904e7228a27f5714c35a84
-
SHA256
9a7ed07719ad7c645a835fd3565f49f957ca1259ff9f3d98b7523e5380637e65
-
SHA512
af9974bf5cfb652e9e21e04c20e062f9c5856c8061e76a093aafb0966e1bc7e677de5856f141a14610fa01968cd7a21d16d442471781cbc7bce7cb2178fccc71
-
SSDEEP
1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:nSHIG6mQwGmfOQd8YhY0/EqUG
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
http://185.246.220.85/testi/five/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Signatures
-
Lokibot family
Files
-
1012-79-0x0000000000400000-0x00000000004A2000-memory.dmp
Headers
Sections