Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2028-75-0x00000000001B0000-0x00000000001CB000-memory.dmp

  • Size

    108KB

  • MD5

    dc095da453fe8ba7bce625d5edc7657a

  • SHA1

    9fe3aa4fb864b051fcd13d72915bce16d95c1815

  • SHA256

    a5e8b0bfed77f04c51da884fe260992cf6394ecd43164d756096c9fca672f92f

  • SHA512

    4d4977eaef621c6c376f3d9e8cdbbb44a2d86c8442a90a6bac705da2c339ce267a1bea376d3e4bb4576cb10acb79adbcbf2bd011f68fcf1a4b4a51cacbd366fa

  • SSDEEP

    1536:wl8D3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:fDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.147/chang2/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 2028-75-0x00000000001B0000-0x00000000001CB000-memory.dmp