Overview

overview

10

Static

static

10

e3fdf94c52...2N.exe

windows7-x64

10

e3fdf94c52...2N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e3fdf94c525545a0968150f151e655a8bb0572563ee038673c96d392664ebfb2N

  • Size

    648KB

  • MD5

    2ac4a1bc2c4293b3f50e6340be1b0340

  • SHA1

    2fe013360108042010caba3a378ac3decd4309b5

  • SHA256

    e3fdf94c525545a0968150f151e655a8bb0572563ee038673c96d392664ebfb2

  • SHA512

    86dc7f310f28e3f600a91a8f5697251a0cf48b5a7a7fcdb907dd471ac3885d6615b57b48e4505c37a3e67360e881e95f2bec29fca4e65ccaf742767a6f01912a

  • SSDEEP

    1536:IzvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqfIzmd:bSHIG6mQwGmfOQd8YhY0/EqUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://pkzz.xyz/PKZ/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

  • Lokibot family
    lokibot
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e3fdf94c525545a0968150f151e655a8bb0572563ee038673c96d392664ebfb2N
    .exe windows:5 windows x86 arch:x86

    0239fd611af3d0e9b0c46c5837c80e09


    Headers

    Imports

    Sections