tofsee | e43a0289d68404c82bdb9dec5074ee94ddb141992a58d3ae485be39053fa7bef | Triage

Sharing

General

Target

2552-3-0x0000000000400000-0x00000000005A7000-memory.dmp
Size

1.7MB
Sample

231005-yqgw3ahb33
MD5

126cd1ffcbbf04fa0f6c8f384f2326b2
SHA1

6cd3415d613468fc519bbc6be91bc5f5ffdeba37
SHA256

e43a0289d68404c82bdb9dec5074ee94ddb141992a58d3ae485be39053fa7bef
SHA512

f21680a8e59d02f55a39f7b6c269911e92787ac307ce79f07fbea726970e37fd11dc8f7ca01d40f0463a9a0993e50e8785b0ca51a326d3aa341f1c2b46d03a96
SSDEEP

3072:6DVCyFxSYACXF8pIAwdd+zUnH+R3LGp547cKA5Z4P:6DVCynACXF8pIj3+wH8bw47904

Score

10^/10

tofsee

Malware Config

Extracted

Family

tofsee

C2

vanaheim.cn

jotunheim.name

Targets

- Target
  
  2552-3-0x0000000000400000-0x00000000005A7000-memory.dmp
- Size
  
  1.7MB
- MD5
  
  126cd1ffcbbf04fa0f6c8f384f2326b2
- SHA1
  
  6cd3415d613468fc519bbc6be91bc5f5ffdeba37
- SHA256
  
  e43a0289d68404c82bdb9dec5074ee94ddb141992a58d3ae485be39053fa7bef
- SHA512
  
  f21680a8e59d02f55a39f7b6c269911e92787ac307ce79f07fbea726970e37fd11dc8f7ca01d40f0463a9a0993e50e8785b0ca51a326d3aa341f1c2b46d03a96
- SSDEEP
  
  3072:6DVCyFxSYACXF8pIAwdd+zUnH+R3LGp547cKA5Z4P:6DVCynACXF8pIj3+wH8bw47904
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2