Extracted

• • Target

    bc752e3f2e651eaabb1728a5220f05da_JaffaCakes118

  • Size

    671KB

  • MD5

    bc752e3f2e651eaabb1728a5220f05da

  • SHA1

    589313ce9d328355473028a07b98aacfd771a7ae

  • SHA256

    d73dd40304c55bfe5ad9baa00bc54b362816dcfce4b807d99b4b0d951c9113eb

  • SHA512

    6d527d09dedf620893b3dfab5b8455f5c6fdbee820c1ff31502fbb911a8e54edf5643bf1c18c3836332c7a2e492324b530c70b94e9664d9e9cf5863a6f45ba3d

  • SSDEEP

    12288:EhT+VkIzcrh6H+jL1RfTS3juYVigZZ6igYc99gPAF9RfAMUYFMErxF2R/:EhOP+jh9TS3juYVbYiAgPAFxUKkR/

  Score

  10^/10

  lokibotcollectionspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Drops file in System32 directory

  behavioral1behavioral2