General
-
Target
1988-2-0x0000000000400000-0x00000000005AE000-memory.dmp
-
Size
1.7MB
-
MD5
9371470e1ced6b4d2ee3309e156dca75
-
SHA1
b5be4729de6f2af909792f2a6180a67b1f89da07
-
SHA256
5a91e741954c051fc257ceba670ab1f5bf1a54174e93283fa3512a2ea1333325
-
SHA512
7793baa5ac2372f4b6f27b6fc12478297b03cb6c646c17970903d5e9c56a30e39b64fb6550a25a153e3eca3f77734ec97348cc1dd0ca9b7fcceb3a9a551fdbd3
-
SSDEEP
6144:6DVCynACXF0pIDp1IxIhToz2xaWlSUr5XT:K8vmF0p21I+TNvlS+j
Score
10/10
Malware Config
Extracted
Family
tofsee
C2
vanaheim.cn
jotunheim.name
Signatures
-
Tofsee family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1988-2-0x0000000000400000-0x00000000005AE000-memory.dmp
Headers
Sections