Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1288-73-0x00000000001B0000-0x00000000001CB000-memory.dmp

  • Size

    108KB

  • MD5

    e653392d84beebf810a30cd6b4ae5ee1

  • SHA1

    6507239848fd83dab75aa296c37f3b57b5adb282

  • SHA256

    1222050d25330b6ca9a5cf8a8a2a744232910b01b24ce8a02ffc89cd3f42999a

  • SHA512

    ee07a7ea0eeac03612bbf2f6ce8edd410e89ce259c1cc5cd9d3432abecce71a8e86d71241b91c67350fe8e1b37e38ce2e150a8886e2c91a025db9f9c861e2f38

  • SSDEEP

    1536:wlED3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:3DMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.164/chang3/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1288-73-0x00000000001B0000-0x00000000001CB000-memory.dmp