Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2868-134-0x0000000000910000-0x000000000092B000-memory.dmp

  • Size

    108KB

  • MD5

    7158e166fd273d3f9736c20f14d6393c

  • SHA1

    38af64a5bea73af2e853bd81aa7a0ed44ec829ec

  • SHA256

    238b702cf29a2228933dfec9ff17796efaa30871221163693f126819d1e8ada2

  • SHA512

    776685c3fdcb93016c03a1fd9324c05b8ceb770256ac84be0d1d35ecc07522b033fc175f26e6c6bce7a8ea89736a0cde5eae69b56083a7615c03196a3a2763d3

  • SSDEEP

    1536:wleD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:hDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://194.180.48.58/morgan/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 2868-134-0x0000000000910000-0x000000000092B000-memory.dmp