General
-
Target
9161600x00000000004000000.dmp
-
Size
648KB
-
MD5
dae34278e0000f24a0e202c69ca733a5
-
SHA1
2ce172f3292f715c54497dadaf8ec36d84d24487
-
SHA256
7775730eab236f2b5eba1e6184fac3b14b8aaa54be030ed81c79b66b76a90167
-
SHA512
40d011a726dcee2c417390f1eff003bef1d8be2bb63477cf074144e0cefe3e865263a08aa0d409a83dba2b211965a67a85c57f5efdb8e430f1236426cde94fc7
-
SSDEEP
1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqMIzmd:nSHIG6mQwGmfOQd8YhY0/EVUG
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
http://tetiquila.me/sirmomo/five/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Signatures
-
Lokibot family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
9161600x00000000004000000.dmp
Headers
Sections