General
-
Target
2200-3-0x0000000000400000-0x00000000005AA000-memory.dmp
-
Size
1.7MB
-
MD5
0dc54cb334e0332ebb021c8589dfb6db
-
SHA1
7c20646f0a72fe2ee2d75c1f1d8eed59b45e583f
-
SHA256
c03b2d7a55291616e1f298f2fc3097573fe7cdc481b7426ade84e3f8b307c1ff
-
SHA512
69b7192f30ad178698c2c4746ddcbc9018c4d5688518d10dacfdf0bca1b556c5ee698d6dfa0178a106fc3aee1776980c236f628c93d555c590cfeb8be0340944
-
SSDEEP
3072:6DVCyFxSYACXFppI/oETMy5g59k9hzzzUdr5Gmm5:6DVCynACXFppIAE4ye54wLe
Score
10/10
Malware Config
Extracted
Family
tofsee
C2
vanaheim.cn
jotunheim.name
Signatures
-
Tofsee family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2200-3-0x0000000000400000-0x00000000005AA000-memory.dmp
Headers
Sections