lokibot | 6712fcd41b56d84de1017702bcee8338b4e62393ecb0ddc3861d9ad5e5fa456f

Analysis

max time kernel
91s
max time network
93s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
18-05-2024 23:04

Target

574c8d86f8d94027b1e0d2be26fb2383_JaffaCakes118.exe
Size

1.9MB
MD5

574c8d86f8d94027b1e0d2be26fb2383
SHA1

ae61b3eb6004093a79753dfadffa98868e13afb6
SHA256

6712fcd41b56d84de1017702bcee8338b4e62393ecb0ddc3861d9ad5e5fa456f
SHA512

c9f50796ccdf821babd1bf2c59a0c8ba1b8f5cd3577042a5c0e2d25d84184cad27582cd813d76116d0a525731afef9e2550807ee30a2187d6df08d417d372d3d
SSDEEP

24576:TxzhAlGIwts3TCr0F0QW0nUAEO8u4YI6wXKjR3JUBSJWMbRtR/pO+t2J:TxnIwtuCgF0a8+OWR3JRJXjR/s+tk

Score

10^/10

Family

lokibot

http://youthwinger.com/let/Panel/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Lokibot
Lokibot is a Password and CryptoCoin Wallet Stealer.
trojan spyware stealer lokibot

C:\Users\Admin\AppData\Local\Temp\574c8d86f8d94027b1e0d2be26fb2383_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\574c8d86f8d94027b1e0d2be26fb2383_JaffaCakes118.exe"
1⤵
PID:3920

memory/3920-0-0x0000000012340000-0x00000000125B1000-memory.dmp

Filesize
2.4MB

Download
memory/3920-1-0x0000000012340000-0x00000000125B1000-memory.dmp

Filesize
2.4MB

Download