Extracted

• • Target

    5abd728fdf55f679b4eacd2de959b342_JaffaCakes118

  • Size

    258KB

  • MD5

    5abd728fdf55f679b4eacd2de959b342

  • SHA1

    bab299b566f9dc884077dabb57009598e68fc10d

  • SHA256

    c6376eeba628812abc49033249a47324a1b52365ab14805e3984ed244ddefd3b

  • SHA512

    24a7c374b5661e5f557b387af6a7477e85a44a02e08973614bff8d669a00996c22ea08e5c8b60c3effe5af4f8df17e801f58027f268b47fc7e903fd81b275288

  • SSDEEP

    6144:42Q3nxxYrgHZ92LExhpAYtF8bd6J+xdb9M:gCgHZ9L/2CF8kJ+xfM

  Score

  10^/10

  lokibotcollectionspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2