Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    872-69-0x00000000004139DE-mapping.dmp

  • Size

    752KB

  • MD5

    9ff0f4b0955bc860585a10499b2f48f3

  • SHA1

    537c43b569174ff9e3eefcb6e05fe202608d5c2e

  • SHA256

    4630f62310de684c8c3cd2aee2f3b9820157841f04ba65e83a1880f6ed0e5cf2

  • SHA512

    73e214c752ad77a923f812935061ced81ccd2b048f67f30444e251ef423ae6073ca0c6d803d7e35f0dff2930c2aeb1ec2312f29bd17656b2edaaca952ae141be

  • SSDEEP

    3072:oSHIG6mQwGmfOQd8YhY0/EzUG1SHIG6mQwGmfOQd8YhY0/EcUGq:ocd6bUfFdXToUMcd6bUfFdXTDUX

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://66.29.145.162/?Y8nalJQQXC4cNDqmmYx1iS34FS7RJj1IspTN8KE5

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 872-69-0x00000000004139DE-mapping.dmp