Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    824-55-0x00000000001B0000-0x00000000001CB000-memory.dmp

  • Size

    108KB

  • MD5

    56a25c3931efcc974f001ebda0f5bf44

  • SHA1

    fdfb7fb25be6d3761d0adf03b9c64f6d3497f366

  • SHA256

    3e950f0acba595dad18cb57f32616cf3a8304cce26210e39b45fd26821a40cf5

  • SHA512

    2320aed320290190bd2e6d222fc9aa17d7b69fd2a0328b361ae7635f140697c952b938f954821eb5fc537c8a1163fb76acb166b1aac36e37469b9870ac2144f6

  • SSDEEP

    1536:wlJD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:iDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://208.67.105.148/ok/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 824-55-0x00000000001B0000-0x00000000001CB000-memory.dmp