lokibot | 3deeb55fefe05f51c41b1724780e5de1e33a432e01f455e3ab5d2af5ca655464 | Triage

Sharing

General

Target

unpacked.bin
Size

104KB
Sample

210608-d371p8xkln
MD5

1917f888cacd48b9a8d4832449e8d34f
SHA1

d732e6a78ea44b77943c1e74e19c9ea92d0b7a28
SHA256

3deeb55fefe05f51c41b1724780e5de1e33a432e01f455e3ab5d2af5ca655464
SHA512

901b095813605c89945e1b5354fef210b0a68d94a79156b5d405116c5f00a15571046a0e9d65830cdaea8a3deda657a6d4ac6744ecef30cca6b26033d8b61b55

Score

10^/10

lokibot spyware stealer trojan

Malware Config

Extracted

Family

lokibot

C2

https://firenzelavori.lt/loki/Panel/five/fre.php

http://kbfvzoboss.bid/alien/fre.php

http://alphastand.trade/alien/fre.php

http://alphastand.win/alien/fre.php

http://alphastand.top/alien/fre.php

Targets

- Target
  
  unpacked.bin
- Size
  
  104KB
- MD5
  
  1917f888cacd48b9a8d4832449e8d34f
- SHA1
  
  d732e6a78ea44b77943c1e74e19c9ea92d0b7a28
- SHA256
  
  3deeb55fefe05f51c41b1724780e5de1e33a432e01f455e3ab5d2af5ca655464
- SHA512
  
  901b095813605c89945e1b5354fef210b0a68d94a79156b5d405116c5f00a15571046a0e9d65830cdaea8a3deda657a6d4ac6744ecef30cca6b26033d8b61b55
Score

10^/10

lokibot spyware stealer trojan
- Lokibot
  Lokibot is a Password and CryptoCoin Wallet Stealer.
  trojan spyware stealer lokibot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

lokibotspywarestealertrojan

behavioral2

lokibotspywarestealertrojan