General
-
Target
50c7ebc89793bd7c8ba93468efec11dc
-
Size
753KB
-
Sample
240110-rlsz7shgh3
-
MD5
50c7ebc89793bd7c8ba93468efec11dc
-
SHA1
803ac40bd7cc00447efc9dbf81012fe43d67c593
-
SHA256
1d6fd54291eed895054d2c88063cadac20c03b9a806b6eaec65d8a5e20af560e
-
SHA512
a44e9d91ca66849989bd9f367de6a9ec55cfd3f6e31a9288f133075477edab0348a4b2080becbd40cd2fe4c794c9ed1c49f696be79b44216dc2725adfc9aacc7
-
SSDEEP
12288:shVsgnLAc4C+E/cZOJyx1jiiyWFbMx6JcnNCqtxY:shVpnM/E0dx1jiiyW6Xn8OxY
Malware Config
Extracted
lokibot
https://www.rnofinancial.com.au/wp02/five/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Targets
-
-
Target
50c7ebc89793bd7c8ba93468efec11dc
-
Size
753KB
-
MD5
50c7ebc89793bd7c8ba93468efec11dc
-
SHA1
803ac40bd7cc00447efc9dbf81012fe43d67c593
-
SHA256
1d6fd54291eed895054d2c88063cadac20c03b9a806b6eaec65d8a5e20af560e
-
SHA512
a44e9d91ca66849989bd9f367de6a9ec55cfd3f6e31a9288f133075477edab0348a4b2080becbd40cd2fe4c794c9ed1c49f696be79b44216dc2725adfc9aacc7
-
SSDEEP
12288:shVsgnLAc4C+E/cZOJyx1jiiyWFbMx6JcnNCqtxY:shVpnM/E0dx1jiiyW6Xn8OxY
Score10/10-
Lokibot
Lokibot is a Password and CryptoCoin Wallet Stealer.
-