General
Static task
static1
URLScan task
urlscan1
Malware Config
Extracted
Family
koiloader
C2
http://82.118.16.176/punctulum.php
Attributes
-
payload_url
https://maconsmallbusinesses.com/wp-content/uploads/2018/08
Targets
-
-
Target
https://maconsmallbusinesses.com/wp-content/uploads/2018/08/
-
Koiloader family
-
Detects KoiLoader payload
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-