Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1212-55-0x00000000002B0000-0x00000000002CB000-memory.dmp

  • Size

    108KB

  • MD5

    185fc7be33c969042a4a4778062a3cd9

  • SHA1

    abdcdc9a6222fd5a5b2c34d613b1584167ea37f0

  • SHA256

    ee6d166b48272be356bced27f844b395616574c7b10b041e89e34883a05b5ef1

  • SHA512

    9d2be772410c7cf006b49002d4fb455c6b6394a6787dbc58fb4e0280cdb54f75686742d27aa0a49895b410d90b988c4679989d7e2efc50ef5453894d8cbf08a2

  • SSDEEP

    1536:wllD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:CDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://185.246.220.85/fresh/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1212-55-0x00000000002B0000-0x00000000002CB000-memory.dmp