Overview

overview

7

Static

static

flokibot_0...ir.exe

windows7_x64

7

flokibot_0...ir.exe

windows10_x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    flokibot_0.0.0.10.vir

  • Size

    231KB

  • Sample

    200719-pq3eyxqtsj

  • MD5

    c149ef34c57e6f7e970063679de01342

  • SHA1

    855388d354f19322a722c6f9d01e574c9bbf19ae

  • SHA256

    5028124ce748b23e709f1540a7c58310f8481e179aff7986d5cfd693c9af94da

  • SHA512

    d05d3e53c075d87ca274f579322a63836b1304de0436dfa32fd5af7c9a2affc09dcc5433a67fdd2e80ca7f4354e86158e0ea0fa63de72644ef6edb48d0ab53b2

Score
7/10

Malware Config

Targets

    • Target

      flokibot_0.0.0.10.vir

    • Size

      231KB

    • MD5

      c149ef34c57e6f7e970063679de01342

    • SHA1

      855388d354f19322a722c6f9d01e574c9bbf19ae

    • SHA256

      5028124ce748b23e709f1540a7c58310f8481e179aff7986d5cfd693c9af94da

    • SHA512

      d05d3e53c075d87ca274f579322a63836b1304de0436dfa32fd5af7c9a2affc09dcc5433a67fdd2e80ca7f4354e86158e0ea0fa63de72644ef6edb48d0ab53b2

    Score
    7/10

    • Deletes itself

    • Drops startup file

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks