Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    844-361-0x0000000000220000-0x000000000023B000-memory.dmp

  • Size

    108KB

  • MD5

    3c160b3b1db8105d51a60834fd2881ce

  • SHA1

    afd63c91aee13f32b076b46b5cb9480ad6d8b615

  • SHA256

    ba6f09f52eaf97e7cf8b4e54677e616c58cef5650315e6b2f49e23a0aa7e1a5b

  • SHA512

    0073df5bfd8ca95ea5b1088799e81c8e196aa99a681401fcd0ffcbc697e2692c3e949577a2a605dee260336bdce847b69a181afe849b81f519f73c795f59ec1e

  • SSDEEP

    1536:wl8D3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:7DMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://194.55.224.9/fresh1/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 844-361-0x0000000000220000-0x000000000023B000-memory.dmp