Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3812-134-0x00000000007B0000-0x00000000007CB000-memory.dmp

  • Size

    108KB

  • MD5

    a75db3c00844686903fbbe217d089aac

  • SHA1

    874256aad1a843f7484f76da7eaa645eac8ca8b4

  • SHA256

    88d17d29cfdc315dd0b05a7d9a8c5674590f0f3252092d0c335008c22a52b79c

  • SHA512

    4e1e4d84c4e17f28eb5b255c1d09bae7ad5a6bc9aa9917fd36b6f84841ae5fa0df460941f0e1589716365dae7071927102075b51dcfb0ac6cc6662c94cddf2cb

  • SSDEEP

    1536:wlrD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:YDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.164/kung/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 3812-134-0x00000000007B0000-0x00000000007CB000-memory.dmp