General
-
Target
2044-3-0x0000000000400000-0x00000000005AD000-memory.dmp
-
Size
1.7MB
-
MD5
eb7c45a9482a2c2b325fdcb6fd4b32df
-
SHA1
075ee5bd6ea424ea0b0151ae58622f4210a314d4
-
SHA256
ae0cbf823ad3f5574f41c21d55e46bebe57158ad021d133f5b8e189e54cf4511
-
SHA512
ea4af601e77f6bf5279ba1dcd2dac842f81a1d3dd45115cea3dfc975ec4252912c6b782bd805c112723b1f71f60fde90937608af47c7266a94f39cb863cd3e88
-
SSDEEP
3072:6DVCyFxSYACXFoSpIVutcWrYlwRabrTRqQxSCcSd5PYe5EovT99c:6DVCynACXFVpIUtPslwCxS0A18Ts
Score
10/10
Malware Config
Extracted
Family
tofsee
C2
vanaheim.cn
jotunheim.name
Signatures
-
Tofsee family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2044-3-0x0000000000400000-0x00000000005AD000-memory.dmp
Headers
Sections