Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    676-134-0x0000000002C70000-0x0000000002C8B000-memory.dmp

  • Size

    108KB

  • MD5

    a0837617c1bcc91d16819b459fc7ed8f

  • SHA1

    638b4f9295a57ce8d9f1b915f93c2290aca8238c

  • SHA256

    a6863127258ab5184831d87bb3b11ef1209394a516d9acb18f19bfca5bce2db0

  • SHA512

    431b56e2d89f00cd586694f842ed0e99d04218ee540ef07d927d631518c08d539432fc748e1f019dada420ddbe5a7620ef286ea04883ec9c8783913087149657

  • SSDEEP

    1536:wlrD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:4DMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://185.246.220.85/fresh/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 676-134-0x0000000002C70000-0x0000000002C8B000-memory.dmp