General
-
Target
2056-2-0x0000000000400000-0x00000000004EA000-memory.dmp
-
Size
936KB
-
MD5
02d51715303de2ce43f6fe274cb291eb
-
SHA1
c5b7152f7178ce25873c6b05c0742900c9a0188a
-
SHA256
5b938f14e54213a98ddd62e22824086c34da71e65bf37551c109d43021a07f9f
-
SHA512
28e4c6d2a901483c2b2becdf4eb9af7de2eaa671b7786baf55613decf816098087d498e4437afcd21685e883008fad291bdfa909ae217eefa68f918f742e2171
-
SSDEEP
3072:6DVCyFxSYACXFhpIQAy8I2a9CZo2Y07LPd0RP/nllVP:6DVCynACXFhpIH9la92o2Y0fo/nR
Score
10/10
Malware Config
Extracted
Family
tofsee
C2
vanaheim.cn
jotunheim.name
Signatures
-
Tofsee family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2056-2-0x0000000000400000-0x00000000004EA000-memory.dmp
Headers
Sections