General
-
Target
1204-3-0x0000000000400000-0x00000000004F4000-memory.dmp
-
Size
976KB
-
MD5
54f303dbdf330df8e1ca956e17863971
-
SHA1
2be428cd2b260abd96b8e373b0feec168197a9c4
-
SHA256
81e25fed984bf1cdf51241c54520219aa334db3812f02ba5d03132191adf98d1
-
SHA512
b956b2eeaaac8eb434e84b65d8798196b4a24a25b900eaaad8f2f73cedcbaa5575a73d5510db82ec14c317f39c1a66d36a3b9372fb9f17e2376e42c77c535f44
-
SSDEEP
6144:6DVCynACXFtpI2DUu63xqPR+DYK1D7TX:K8vmFtp6++tDvX
Score
10/10
Malware Config
Extracted
Family
tofsee
C2
vanaheim.cn
jotunheim.name
Signatures
-
Tofsee family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1204-3-0x0000000000400000-0x00000000004F4000-memory.dmp
Headers
Sections