Extracted

• • Target

    594f5d2291e921c4b93fc01008d169b0

  • Size

    296KB

  • MD5

    594f5d2291e921c4b93fc01008d169b0

  • SHA1

    d683c4d08c12e09ec73b61e9a02dfcd45c69deb4

  • SHA256

    b7780e3be29286fab7cf6ca17d1fc3f4acdde8329915d19e506719e553d81e7b

  • SHA512

    af7bd4fb71d2e6fc793c1fe4af57460c4248e78861db6ef36fa769b29775f79c425d9bd5ddbea440ed5568c788704178128127af32aed72aa2b0540601bb1894

  • SSDEEP

    6144:oFvSNWJdzWm/We7f1Qnjp0VmxmTId6hZMIl3n919YdxUgdHyz/zxcb0K:oBSNcWfQf1Qjp0VmIGMZd5YdJHw/zib7

  Score

  10^/10

  lokibotcollectionspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2