General
-
Target
2592-3-0x0000000000400000-0x0000000000710000-memory.dmp
-
Size
3.1MB
-
MD5
2561dd1f9472ced507b6f7234068fb5b
-
SHA1
7dbc5de771cdc64ae19efedcb07d2b349216fcba
-
SHA256
d7ff98250972dadedbde512f3d454befa8788b42cc19958394ef3b5a16e5d032
-
SHA512
b28d3a6fe56a116635e5e3237a6b7329c59c797067c6515a9b9eea1322a056c9bcfa4ccbe88885cbbe55bc60ad30986d798b210b43c0779088497cfc1b1e6672
-
SSDEEP
3072:6DVCyFxSYACXFOpIHSI1klYu4Y20gL5MLH09Kat6pas9x:6DVCynACXFOpIyIGlJgNkipt6pas
Score
10/10
Malware Config
Extracted
Family
tofsee
C2
vanaheim.cn
jotunheim.name
Signatures
-
Tofsee family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2592-3-0x0000000000400000-0x0000000000710000-memory.dmp
Headers
Sections