Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4048-121-0x00000000026D0000-0x00000000026EB000-memory.dmp

  • Size

    108KB

  • MD5

    114df0412b5ce4b879bb5723200c5dc6

  • SHA1

    9262924b29cf428ce60b923e7054e460c3a4c8b0

  • SHA256

    b01e7df477115915770577736d5787af524ad4b026498eb66e6bda27bb7134cc

  • SHA512

    e79241ffdfb1183fab031cb70b852d7199943526aa16f0966f322336ba9c0a29cbd4c52e12977639d7c4bd76e01051b37623400aab7a566a329dbac778925ecc

  • SSDEEP

    1536:wlND3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:GDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.147/chang2/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 4048-121-0x00000000026D0000-0x00000000026EB000-memory.dmp