Lokibot | extracting-configuration-of-lokibot

Classifications

Spyware

Threat Names

C2/Generic-A Lokibot Lokibot.v2 Mal/Generic-S

Dynamic Analysis Report

Created on 2022-11-25T09:25:20+00:00

e524d7c7a6d4ade2651a65b9d0c5e162532a70495b957b9a5d34dcaaace571fe.exe

Windows Exe (x86-32)

Remarks (1/1)

Anti-Sleep Triggered (0x0200000E): The overall sleep time of all monitored processes was truncated from "1 hour, 52 minutes" to "20 seconds" to reveal dormant functionality.

Function Logfile

This feature requires an online-connection to the VMRay backend.

An offline version with limited functionality is also provided.
The offline version is supported only in Mozilla Firefoxwith deactivated setting \"security.fileuri.strict_origin_policy\".

Before

After

WHOIS Domain Information

Screenshot

Domain Name
WHOIS Response