Overview

overview

10

Static

static

10

JaffaCakes...21.exe

windows7-x64

1

JaffaCakes...21.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_86e6f9a2f63058ab6e8508ef4f19041c27bc32951f162e47fa69dced6a4a4f21

  • Size

    648KB

  • MD5

    f914e93a467c456c2141d5d2d2db2d27

  • SHA1

    c0397acf8c80b42ccabae528ddec9ea64a30b972

  • SHA256

    86e6f9a2f63058ab6e8508ef4f19041c27bc32951f162e47fa69dced6a4a4f21

  • SHA512

    ed8340ca866fc28e7b0c4882a41fe929f1ec6056e4f2d333b7711bd02781e20916f6c72516db91aadcb93941585199cde56ffedce1789027bd02fdfd830e58e4

  • SSDEEP

    1536:czvQSZpGS4/31A6mQgL2eYCGDwRcMkVQd8YhY0/EqDIzmd:nSHIG6mQwGmfOQd8YhY0/EmUG

Score
10/10
lokibot

Malware Config

Extracted

Family

lokibot

C2

http://sempersim.su/gf9/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Signatures

  • Lokibot family
    lokibot
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_86e6f9a2f63058ab6e8508ef4f19041c27bc32951f162e47fa69dced6a4a4f21
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.