Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1372-89-0x00000000001B0000-0x00000000001CB000-memory.dmp

  • Size

    108KB

  • MD5

    e9b6711b6bf24952713b7f6d9a9c0255

  • SHA1

    d9ecdc491afde8ff6a6f8ee23f611ecb6fa66550

  • SHA256

    a52598e41b4ae5e5631ff2d99c5cee2a0c8a72ad54f6f0a2b4eacc3319662d4b

  • SHA512

    c9b7f6856913fa4e3d9f5265effedfe48c0fa9455fcfb6c3f52e3bf1f609bc2278d3fc87f06c5afce36fce1bcdb2a6766c8c66d9f89dad543326cba98b4327c1

  • SSDEEP

    1536:wlSD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:5DMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.164/fresh1/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1372-89-0x00000000001B0000-0x00000000001CB000-memory.dmp