Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1112-73-0x00000000001B0000-0x00000000001CB000-memory.dmp

  • Size

    108KB

  • MD5

    df5fa1b5a9c55f76a8dad160af6aed0e

  • SHA1

    8bca1fe4aebdb0df420351ea173bd0f3561c9ff2

  • SHA256

    9a72d6f127d7e583207d2d93b7f54f8980cd61b816ef8eb84b9e5d17590f42e3

  • SHA512

    d40a3dc25db89babdeeed9f67a88f466cee1473401ba2ddee5ecb6fb3604c03ef8e41c5b8c9a46b676c98312790d0a74d846f7d24bdbbad073cd25e2373540f6

  • SSDEEP

    1536:wl8D3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:7DMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.164/mancho/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1112-73-0x00000000001B0000-0x00000000001CB000-memory.dmp