Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    988-212-0x00000000003A0000-0x00000000003BB000-memory.dmp

  • Size

    108KB

  • MD5

    00d4d0363b532d4aea622105dd0a61ca

  • SHA1

    3b77faca133671d251ca9733596e62bc61048a61

  • SHA256

    c51c196af65978e3e5540a6494860db72108d2c3db1cf8e0944e59bb2234a15e

  • SHA512

    f92999b328abdf243a456c337e3780b4e5bb4db1a573bec68bb987f157788034415f7d46c650f0293d3f34bc8d9055e5e9995c58c7abd9e87a182bc964cbea04

  • SSDEEP

    1536:wliD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:JDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://185.246.220.85/line/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 988-212-0x00000000003A0000-0x00000000003BB000-memory.dmp