Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2208-134-0x0000000002D30000-0x0000000002D4B000-memory.dmp

  • Size

    108KB

  • MD5

    ff2272f419f7fc7d1d4e41d04cd2c194

  • SHA1

    6f535aeb119c00d5d6d337949f66040b910554c1

  • SHA256

    1d67471a6fae03142e2a6af8a6b177566556e7bd530f4f71a6bdcc93c033cd6c

  • SHA512

    8f9ef2febfd6163f062c195384f6405a432221092530d6ad5f3005bdc747f0c31bf7949018dfc1b20831d48bf998c3ef607cee3031737ad3aa147ed0565107d8

  • SSDEEP

    1536:wlmD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:RDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://185.246.220.85/fresh/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 2208-134-0x0000000002D30000-0x0000000002D4B000-memory.dmp