Extracted

• • Target

    e04903f02296a5f293b3744c1cf309de09c686d4a26923de089f08f52c7fa16e

  • Size

    274KB

  • MD5

    bacd9c42ff080aa560a284a117847333

  • SHA1

    b4ea611a8cc898f8475bb26b435846ea0f92b66b

  • SHA256

    e04903f02296a5f293b3744c1cf309de09c686d4a26923de089f08f52c7fa16e

  • SHA512

    80459edf9a26b813875bd756a4bc3586726bee799de904ef31dc59c86dce47ccc3251a1f05116d88ed6ac321ebf33f12329cdeba9e5fe966da5f717e506c9e47

  • SSDEEP

    6144:Vkt6DJ0jbbECmLbWuDslPWkd4ASgRkIZ9qM7HNpd:3JUbbECGtWeZqkqJ7HN7

  Score

  10^/10

  lokibotcollectiondiscoveryspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Lokibot family

    lokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2