Extracted

• • Target

    0a1790bae687e47fb09c3729bc9d4e97

  • Size

    825KB

  • MD5

    0a1790bae687e47fb09c3729bc9d4e97

  • SHA1

    0990cd0454c155e37c9db411bfe68510d1430995

  • SHA256

    fbad50907d950465e55d98eea7d9a594ac5ecfe7c556b61feb0b5c9097c4edfd

  • SHA512

    eb7fd419a3d3c36716f5871eeee647db6650051c46e525d892dfb6011c702848bdaaa7b493e61499b78fdc1980f6c99300dc2f1760b4694372ec7cb791986ce7

  • SSDEEP

    12288:D5tMQBLw02iNv4suM3t4/4GHVvULPDyqxA/DMnc/QPR+iqY0+ra0hn8X4V7SxttV:N9Lw01usuD4HqqxAbM0Qa+BhK45S3t

  Score

  10^/10

  lokibotcollectionspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2