Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1812-79-0x00000000002A0000-0x00000000002BB000-memory.dmp

  • Size

    108KB

  • MD5

    d449cde5c390f3678062ae4fa04cce69

  • SHA1

    88ab6603b988502ece9105c56fa5a0abf6b8e793

  • SHA256

    dc969f4b9b3e3e6b5aa4fdd18388b9440206a0f53191a126345102c348449560

  • SHA512

    e3fe0c2b138c212f470b58c9a99bf7fe0856ecbf1e28d30e3d54e9261ab004fb929ffbb4beebd5644db40999dba56c28e6032451a48a9763550cab7f49938849

  • SSDEEP

    1536:wldD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:+DMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://171.22.30.164/kung/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1812-79-0x00000000002A0000-0x00000000002BB000-memory.dmp