General
-
Target
2552-3-0x0000000000400000-0x00000000005A7000-memory.dmp
-
Size
1.7MB
-
MD5
126cd1ffcbbf04fa0f6c8f384f2326b2
-
SHA1
6cd3415d613468fc519bbc6be91bc5f5ffdeba37
-
SHA256
e43a0289d68404c82bdb9dec5074ee94ddb141992a58d3ae485be39053fa7bef
-
SHA512
f21680a8e59d02f55a39f7b6c269911e92787ac307ce79f07fbea726970e37fd11dc8f7ca01d40f0463a9a0993e50e8785b0ca51a326d3aa341f1c2b46d03a96
-
SSDEEP
3072:6DVCyFxSYACXF8pIAwdd+zUnH+R3LGp547cKA5Z4P:6DVCynACXF8pIj3+wH8bw47904
Score
10/10
Malware Config
Extracted
Family
tofsee
C2
vanaheim.cn
jotunheim.name
Signatures
-
Tofsee family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2552-3-0x0000000000400000-0x00000000005A7000-memory.dmp
Headers
Sections