Extracted

• • Target

    Donat_Q88 (Oil)_07Aug2023110129933.exe

  • Size

    522KB

  • MD5

    e22c607aaa393fdf742c1edde79d599e

  • SHA1

    b0b8096872e966b5a66b620c313b2ca3542320a6

  • SHA256

    800db62cfd80b24607791f24e39242a581669bf53dd8c82e53e8eea5007e81e1

  • SHA512

    69a13eaf76e2515043eec0d873626138c52ec24bed1f8e22253ae778c598115d4d5f18ccd119964db2d6e38a74afade49e0e2f10c1103474385067c752af5eba

  • SSDEEP

    12288:LV5LrfX9KFw0Vuh4yOFqqrVgnwQ1tMFS/MuL/ZVn:Lftgu3aru7tc1I/3

  Score

  10^/10

  lokibotcollectionspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2