General

  • Target

    1132-55-0x00000000003A0000-0x00000000003BB000-memory.dmp

  • Size

    108KB

  • MD5

    0c5233c3e084a25e25d84f75ec48c291

  • SHA1

    6bc8f94d4aec8d1cab999e750c034a24429accb1

  • SHA256

    796a07b4f0acdfcfa91704b8ddef4a36aed2c2b189025e824447ae2e0d1d317f

  • SHA512

    264944d71c0f1f4ce7bc91dbb1b29dbb4cf754da161154c3da80b61710b89661d7d020b440bb97b2d02ccc8344d835927adcaec26890d46bc382db092fd7cb98

  • SSDEEP

    1536:wlzD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:kDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10

Malware Config

Extracted

Family

lokibot

C2

http://185.246.220.60/shen/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1132-55-0x00000000003A0000-0x00000000003BB000-memory.dmp