Overview

overview

10

Static

static

10

1f20ca87e6...18.exe

windows7-x64

1

1f20ca87e6...18.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1f20ca87e679bfd51e01bba9e5dd849d_JaffaCakes118

  • Size

    854KB

  • Sample

    240507-cw1qgahb63

  • MD5

    1f20ca87e679bfd51e01bba9e5dd849d

  • SHA1

    ed93c13502544a2875764ec481f3f8cbda91d7a7

  • SHA256

    de6cdcb42eecc44262e86add137facf0765ab21e8130e4e6230ea9c53e1429ce

  • SHA512

    4571dcdbd379bfd34c20dc0526c6b2e28cc1f1ba9ece2b7e48e7e1b04cc8858d6732fc8009101d9d9de2bb0ad3159417e51835e21c1c1f8a7ce5b28a9cf56786

  • SSDEEP

    24576:z7kgagASQnu9fHHZwvK7gMFIKt8jQvMIUunwXK2:zkSQupZwvK8MFLt8jQvfwv

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://dunysaki.ru/buch-x5/fred.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

    • Target

      1f20ca87e679bfd51e01bba9e5dd849d_JaffaCakes118

    • Size

      854KB

    • MD5

      1f20ca87e679bfd51e01bba9e5dd849d

    • SHA1

      ed93c13502544a2875764ec481f3f8cbda91d7a7

    • SHA256

      de6cdcb42eecc44262e86add137facf0765ab21e8130e4e6230ea9c53e1429ce

    • SHA512

      4571dcdbd379bfd34c20dc0526c6b2e28cc1f1ba9ece2b7e48e7e1b04cc8858d6732fc8009101d9d9de2bb0ad3159417e51835e21c1c1f8a7ce5b28a9cf56786

    • SSDEEP

      24576:z7kgagASQnu9fHHZwvK7gMFIKt8jQvMIUunwXK2:zkSQupZwvK8MFLt8jQvfwv

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks