Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1156-55-0x00000000003A0000-0x00000000003BB000-memory.dmp

  • Size

    108KB

  • MD5

    bd7ab5045e411aa7e796021ebb62449c

  • SHA1

    9c77a05d0ba226a9981984219e64be9eb12e6fc3

  • SHA256

    04130602933522d6713d1fd1cc2a1e5ad1aa2d0a3851c185b947492b97e1395f

  • SHA512

    949f1dfb3b4ff93949a03682f9c88fab256b6bc546b412bb2da91f5b4c6dac91f2e311e24237f3c294cc6ba679bcd7423e3774d64d012f99b40010186e577cf2

  • SSDEEP

    1536:wlND3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:uDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.164/mancho/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1156-55-0x00000000003A0000-0x00000000003BB000-memory.dmp