Overview

overview

10

Static

static

10

adb3f5d51c...20.exe

windows7-x64

1

adb3f5d51c...20.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    adb3f5d51c0a9a0c6b47186283f07020.bin

  • Size

    648KB

  • MD5

    adb3f5d51c0a9a0c6b47186283f07020

  • SHA1

    234a3230788442d197b2946ab8f877ee3cd8dbde

  • SHA256

    5c69cad50e722a46349d171622ac542ddb2888feb5ab93fa664b60c5196ea1af

  • SHA512

    846ffbad33a6de43674dae2e82515f01f997227b385d3f32e86895ba584f2af7e738bccaeedba751b1fa602e58418cf6feb08a19b5471161738a6607ec647384

  • SSDEEP

    1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:nSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://161.35.102.56/~nikol/?p=143606594

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

  • Lokibot family
    lokibot
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • adb3f5d51c0a9a0c6b47186283f07020.bin
    .exe windows x86


    Headers

    Sections