Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    400-1-0x00000000007A0000-0x00000000007BB000-memory.dmp

  • Size

    108KB

  • MD5

    509a6b03a411eff5808f8ead9dfe636d

  • SHA1

    14f27ce5520db4a184cb7e7cfb46e32f4e82b6a2

  • SHA256

    b0c2369233d225432ab9609792f97dd89a9520e4a74d246a6330030d96cbbb30

  • SHA512

    b3c25936f53d4e697a0ce250b2990d00a8b7f319cc386019a19f117bf0bc0b33f00cafa555097385d2d21cd518d1a6f891df2bb9d6d8093c9eec7f4dfdcf78f6

  • SSDEEP

    1536:YlDD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:4DMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

https://sempersim.su/a14/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 400-1-0x00000000007A0000-0x00000000007BB000-memory.dmp