Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1140-83-0x0000000000220000-0x000000000023B000-memory.dmp

  • Size

    108KB

  • MD5

    484f4deb2c8383614fdafc43f439f614

  • SHA1

    f4841a2aa231e6ca5ab51ec62d1503b667250661

  • SHA256

    016c5b4bc9c3a52011104224f40bcc5eefa45e73861feea08e0b5f0589ff9328

  • SHA512

    f8c26948bd63809588eb8b58fa6abd765f20b5fe64114e587cacf252a59fc9ebd850d049b710c9451d03deded92506d83abcd99d012251c6f7bb19c5235b587c

  • SSDEEP

    1536:wlwD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:3DMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://185.246.220.85/line/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1140-83-0x0000000000220000-0x000000000023B000-memory.dmp