General
-
Target
2076-57-0x0000000000400000-0x0000000000597000-memory.dmp
-
Size
1.6MB
-
MD5
6bc2930a1ce0df6ef3534031d6dceb5b
-
SHA1
52c93c813003e91041cf76c602dbc2ecda70bfe1
-
SHA256
359662d023ccea4dfa8b4deea65127ee4f5d497d2b886e08ed4fb8bab48a5ab2
-
SHA512
d9228aa5fbfd7b8f84e8061ef614728f5a8bf41f7335a3aa1bfbcfa497c365834646d81d8a3d11cf11bd9d5b075bd69c8736544362608fefe6da0aa731cf24fb
-
SSDEEP
3072:6DVCyFxSYACXFM+pIwEh4DVBdRGMsjQ3IdDwYwLH55TzFZCosLE:6DVCynACXFM+pIHODB1CIocYwLTz2w
Score
10/10
Malware Config
Extracted
Family
tofsee
C2
vanaheim.cn
jotunheim.name
Signatures
-
Tofsee family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2076-57-0x0000000000400000-0x0000000000597000-memory.dmp
Headers
Sections