Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1324-55-0x00000000001B0000-0x00000000001CB000-memory.dmp

  • Size

    108KB

  • MD5

    47ff3419f3e04255f1f9349e983bd73a

  • SHA1

    811da9547f061ca5bf81ed47a73f1a9eacf7acb0

  • SHA256

    2d83bd9d30fd069e8f45d11447e67518ea9e8e18444a28daec8740c52dadbe2e

  • SHA512

    4c6e2a12f7eb9bb70edd0fa2d0362d7396b8753acd82bb2c57d8e315bf01f4f3bfae9ee5db9adc7c994818dbfbeac089410507d2e2b3ca52312de5d3fc484f17

  • SSDEEP

    1536:wldD3zvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:+DMSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://194.180.48.58/morgan/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

Files

  • 1324-55-0x00000000001B0000-0x00000000001CB000-memory.dmp