Extracted

• • Target

    a72c0d696fba8a092fe459d85ab642b49529b1b156e597da55dceb8cdf579cda

  • Size

    612KB

  • MD5

    dc533a0eb59e0d32b6e72743b6bc0a97

  • SHA1

    9c1216b9ac7388a927b208e15024abcaa560bc6e

  • SHA256

    a72c0d696fba8a092fe459d85ab642b49529b1b156e597da55dceb8cdf579cda

  • SHA512

    0285d0adb8b526c7361fd1eef8317fbdaff626e6cd23c29fe7f67d7bf9350cdc3c2603e97bf04dd8740a1995192ac74dc06d20354f4de2c4c910a2bab23515c8

  • SSDEEP

    12288:Dyaq+X9KQ7qWM4PM8Jsw7WwGHtFuo+9MPScP53:Dyaq+tt7qCPM8Js8bYHuTmPScN

  Score

  10^/10

  lokibotcollectionspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1