Extracted

• • Target

    Transfer Request_pdf.exe

  • Size

    257KB

  • MD5

    76e63cbd970c7a019e3bc4bb409f0606

  • SHA1

    5d4c5632dab2fa18942dc910ec3c5731d488aa83

  • SHA256

    44df96504ff0a727740da2a67982e2d214849ecf98a64de1ffcbf92bb46331a1

  • SHA512

    9dad45e1d26ce496d2e352523b9d3e9ee02db82ec338c425dcccbb73acd203a72a398a0ea5d5a04483e2a1a2180799949bb0c5b010e137ee3cad67ab8acf2061

  • SSDEEP

    3072:bg6Vvv4cmHjbHmrAhFjwx1mL2SCWXEDPXn2f2ijm23+8lVOzUIGOXshtSlJDr2kj:xVv4cLMdo1PrPn2fHSCVOzqWnJ9

  Score

  10^/10

  lokibotcollectionspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2