Overview

overview

10

Static

static

10

1180-119-0...ry.exe

windows7-x64

1

1180-119-0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1180-119-0x0000000000400000-0x00000000004A2000-memory.dmp

  • Size

    648KB

  • Sample

    240710-gswpka1bkp

  • MD5

    a6e22f36350030fed82cb028a12cb652

  • SHA1

    3de35571cca5ba23c52ee4efbf1155ee92bbcafa

  • SHA256

    2ec94e1ea2fc1af4d9292a2d8fa2d609327fe821f1f230d10304f1adfd6250a1

  • SHA512

    f8005dca6c75bddb82c3668350fd0208fd1840fb431da676a043f8e90fc33570300576b65e867125d2fa779467e92e880b29706979ed37602a45f795b0450258

  • SSDEEP

    1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:nSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://dashboardproducts.info/bally/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

    • Target

      1180-119-0x0000000000400000-0x00000000004A2000-memory.dmp

    • Size

      648KB

    • MD5

      a6e22f36350030fed82cb028a12cb652

    • SHA1

      3de35571cca5ba23c52ee4efbf1155ee92bbcafa

    • SHA256

      2ec94e1ea2fc1af4d9292a2d8fa2d609327fe821f1f230d10304f1adfd6250a1

    • SHA512

      f8005dca6c75bddb82c3668350fd0208fd1840fb431da676a043f8e90fc33570300576b65e867125d2fa779467e92e880b29706979ed37602a45f795b0450258

    • SSDEEP

      1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:nSHIG6mQwGmfOQd8YhY0/EqUG

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks