Overview

overview

10

Static

static

10

1f5208f61b...18.exe

windows7-x64

1

1f5208f61b...18.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1f5208f61b6f561569094af261633b6f_JaffaCakes118

  • Size

    648KB

  • Sample

    240507-d5qgjagc8v

  • MD5

    1f5208f61b6f561569094af261633b6f

  • SHA1

    d984823682d2ba08b779c0701c4b046658efa0f6

  • SHA256

    3d063a5bb72f37ed6ab4e1e60009bb734f267b9ccb897ea27ed302a11d695598

  • SHA512

    889aab1d8a1deb920c61fb848b633fce8bb81fe93ca17795219e547f7e5e2394de60fdbc1fd65b7c2c91b445dfd4d40a8c3bfefaaf7809a427d8af3268b4d1ab

  • SSDEEP

    1536:pzvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqzIzmd:qSHIG6mQwGmfOQd8YhY0/EGUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://amasmax77.com/phzz/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

    • Target

      1f5208f61b6f561569094af261633b6f_JaffaCakes118

    • Size

      648KB

    • MD5

      1f5208f61b6f561569094af261633b6f

    • SHA1

      d984823682d2ba08b779c0701c4b046658efa0f6

    • SHA256

      3d063a5bb72f37ed6ab4e1e60009bb734f267b9ccb897ea27ed302a11d695598

    • SHA512

      889aab1d8a1deb920c61fb848b633fce8bb81fe93ca17795219e547f7e5e2394de60fdbc1fd65b7c2c91b445dfd4d40a8c3bfefaaf7809a427d8af3268b4d1ab

    • SSDEEP

      1536:pzvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqzIzmd:qSHIG6mQwGmfOQd8YhY0/EGUG

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks