Overview

overview

10

Static

static

10

1484-40-0x...ry.exe

windows7-x64

1

1484-40-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1484-40-0x0000000000400000-0x00000000004A2000-memory.dmp

  • Size

    648KB

  • Sample

    240703-k1bk5swald

  • MD5

    4b75dc4068319079d6cdc18cfc1abf36

  • SHA1

    b0aa0deb49b36c264bb09d3481789eb93c9851ea

  • SHA256

    284c4fe2a517144f5c80f410dfcd3b7fc31d4d55e62a4d0d70449ce8a6fb694a

  • SHA512

    25aa7d41616da79dddcf2a08210c0ee46efeb5e78dea63dc75e505adb5f28a1f05ceb6bbb6f72ec19e04dd31250761ea39f80d79d68054fbc3d4f52c8377c50f

  • SSDEEP

    1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqeIzmd:nSHIG6mQwGmfOQd8YhY0/EHUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://andrebadi.top/ugopounds/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

    • Target

      1484-40-0x0000000000400000-0x00000000004A2000-memory.dmp

    • Size

      648KB

    • MD5

      4b75dc4068319079d6cdc18cfc1abf36

    • SHA1

      b0aa0deb49b36c264bb09d3481789eb93c9851ea

    • SHA256

      284c4fe2a517144f5c80f410dfcd3b7fc31d4d55e62a4d0d70449ce8a6fb694a

    • SHA512

      25aa7d41616da79dddcf2a08210c0ee46efeb5e78dea63dc75e505adb5f28a1f05ceb6bbb6f72ec19e04dd31250761ea39f80d79d68054fbc3d4f52c8377c50f

    • SSDEEP

      1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqeIzmd:nSHIG6mQwGmfOQd8YhY0/EHUG

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks