Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4092-119-0x00000000001E0000-0x00000000001FB000-memory.dmp

  • Size

    108KB

  • MD5

    77dd10a710766c4db44c628cf8b5549e

  • SHA1

    80d8c2c9e4891ce0b42b23b9027f5df12f921030

  • SHA256

    ee757c36d7e9918fec210f7e267ff0d6c8d47494ad33676c57e15269714d3f07

  • SHA512

    d4bb74464575df7b9a521bf5a7bde43e3e051fa7d33b87ab0b872c04f1c2718fbf6fbf9a0984fbfbbe0178ea21cd184f378d62211a7b01eb15d4959003e20898

  • SSDEEP

    1536:wlDD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:QDMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.164/mancho/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 4092-119-0x00000000001E0000-0x00000000001FB000-memory.dmp