Extracted

• • Target

    011876543567546_pdf.scr

  • Size

    388KB

  • MD5

    2c00c7674d6c3701c78cf2a4dfb0ce3f

  • SHA1

    853583a9010be8f4403b51ed39c51eecfd5ee2f0

  • SHA256

    b0cf41eaffcc2c22c866c4cb721d763021898f74f1bdf35d4ae2711f6edf327b

  • SHA512

    a45e94221010a9763bcf1e1a1e562597d4f9399e57b65c817b98fd4c3428e9283055f78840e3d81e807135a2ef1fbc8e4ffd0b88fa12985968553a3e82122686

  • SSDEEP

    6144:uLKqZi7AfpBLwZcjbMTVz3ujAOJQ1Phkq66GH2xz3h9ZAEGckcO0Dd:uuYi0XwZK+VzOwD6JHA3nmEBkzsd

  Score

  10^/10

  lokibotcollectiondiscoveryspywarestealertrojan

  • Lokibot

    Lokibot is a Password and CryptoCoin Wallet Stealer.

    trojanspywarestealerlokibot

  • Lokibot family

    lokibot

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Suspicious use of SetThreadContext

  behavioral1behavioral2