LokiBot2

LokiBot2 DHL lure. 100+ application targets: browser, FTP, SSH, email, crypto. HTTP POST credential exfil.

Threat Profile
Type Infostealer
Programming LanguageC++
C2 ProtocolHTTP
First Seen2015
Targets Kuresel
Purpose / Capabilities
  • Credential Stealer+Keylogger
No C2 servers have been identified for this family yet.

Research Reports (1)

High

LokiBot 2 -- 503KB DHL Kargo SMS Lure, C2 Config Fragmentleri | Yüksek

LokiBot2 503KB. "DHL Shipment DOC_643040277" kargo lure. jUC2E, z=ccC2 C2 config fragmentleri.

Read Report →