Extracted

• • Target

    3c2cafc2ee196814ee34b821daa79274_JaffaCakes118

  • Size

    560KB

  • MD5

    3c2cafc2ee196814ee34b821daa79274

  • SHA1

    7e29a064caa0efbc96b349143e24c0c1b78034c6

  • SHA256

    caafb292bba85aa2c94429c248aad57e3cd5667d7edc25157b0514e718b1d7c4

  • SHA512

    057aa11ce6ac22e760c257dc52368fcca96999c0a7cf1e930d23da877678be11571e3731241bbd2c0b43d591a6877e9820d52349b3f85c3cd2fd3acfea982704

  • SSDEEP

    12288:s4vHYQUbCWvxSxepDwNqj2o8C5p0cv6Q0ErsQd97vb:TAkWJuSf88

  Score

  10^/10

  lokibotcollectionspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2