General
-
Target
1132-55-0x00000000003A0000-0x00000000003BB000-memory.dmp
-
Size
108KB
-
MD5
0c5233c3e084a25e25d84f75ec48c291
-
SHA1
6bc8f94d4aec8d1cab999e750c034a24429accb1
-
SHA256
796a07b4f0acdfcfa91704b8ddef4a36aed2c2b189025e824447ae2e0d1d317f
-
SHA512
264944d71c0f1f4ce7bc91dbb1b29dbb4cf754da161154c3da80b61710b89661d7d020b440bb97b2d02ccc8344d835927adcaec26890d46bc382db092fd7cb98
-
SSDEEP
1536:wlzD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:kDMSHIG6mQwGmfOQd8YhY0/EqUG
Score
10/10
Malware Config
Extracted
Family
lokibot
C2
http://185.246.220.60/shen/five/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Signatures
-
Lokibot family
Files
-
1132-55-0x00000000003A0000-0x00000000003BB000-memory.dmp