General
-
Target
1320-65-0x0000000000400000-0x0000000000615000-memory.dmp
-
Size
2.1MB
-
Sample
240309-2bqr7sda51
-
MD5
b6a6f3b944080f8dbd786a8628353cf6
-
SHA1
fe149cfbac6afccb431aeca29995981e7fa2fcf9
-
SHA256
c8ef2b1bc773deac8f744a6942557c7ef894d6e3aace4138262b9aa16df6aff8
-
SHA512
ab00504859e668305ecc567e8447a2fcd71fb4c971cd49c01a20ae3543e55f25beff54eb117a729d027798c9e8a64b1fb50674987104be0033fe947d5e98d3eb
-
SSDEEP
1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqeIzmd:nSHIG6mQwGmfOQd8YhY0/EzUG
Behavioral task
behavioral1
Sample
1320-65-0x0000000000400000-0x0000000000615000-memory.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
1320-65-0x0000000000400000-0x0000000000615000-memory.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
lokibot
http://194.180.48.58/black/five/fre.php
http://kbfvzoboss.bid/alien/fre.php
http://alphastand.trade/alien/fre.php
http://alphastand.win/alien/fre.php
http://alphastand.top/alien/fre.php
Targets
-
-
Target
1320-65-0x0000000000400000-0x0000000000615000-memory.dmp
-
Size
2.1MB
-
MD5
b6a6f3b944080f8dbd786a8628353cf6
-
SHA1
fe149cfbac6afccb431aeca29995981e7fa2fcf9
-
SHA256
c8ef2b1bc773deac8f744a6942557c7ef894d6e3aace4138262b9aa16df6aff8
-
SHA512
ab00504859e668305ecc567e8447a2fcd71fb4c971cd49c01a20ae3543e55f25beff54eb117a729d027798c9e8a64b1fb50674987104be0033fe947d5e98d3eb
-
SSDEEP
1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqeIzmd:nSHIG6mQwGmfOQd8YhY0/EzUG
Score3/10 -