Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1708-55-0x00000000001B0000-0x00000000001CB000-memory.dmp

  • Size

    108KB

  • MD5

    a9f7f7b7f734ead31fa0639cf0cf8784

  • SHA1

    9282cf13e3bf88f07d2eb54512558f3010fda5a8

  • SHA256

    b8abc2ab12ffe71659f0267384496951db9d7c4144624a0e984e9a1204291fe0

  • SHA512

    dc1321452bdb16bf9a61d50c341308baffa5de426e74ba16d14e97dbfbc74b0a4b04e1797bf2273e4509457f5fd2ec983db3caf08474b80fd543f25b93fc5829

  • SSDEEP

    1536:wlzD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:EDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://185.246.220.85/fresh/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1708-55-0x00000000001B0000-0x00000000001CB000-memory.dmp