Extracted

• • Target

    ETD 15-09-2020 (MV.HYUNDAI SUPREME V. 102N_PDF.exe

  • Size

    803KB

  • MD5

    e6681861bd070231aeb0a739e821e7c4

  • SHA1

    99ee12bc70b3d123bd2fdbb4b0b0f42f01fe678e

  • SHA256

    af32eccfa67cab29e2766a587fe7139aa89e76d012b37ef074aa1c4cd086141f

  • SHA512

    dad693de4634eb8fd1a2100ba8062cbaa8be4557686f6312aaaf42e424cfad8feec8791e0b9b00faa5f74161e7f3fa9778f6b038ffc65052ab4a5ec7fbc1e830

  • SSDEEP

    12288:eb6mCM9sXHh9BoRPqsxOVKuS5r70xwgeqh043L97/hOCR0N17lz:veSHhYRRxOVGcxJBdb1knp

  Score

  10^/10

  lokibotcollectionspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2