General
-
Target
2192-4-0x0000000000400000-0x00000000004F3000-memory.dmp
-
Size
972KB
-
MD5
576377577aba34b8f0e69b47fbcbde8f
-
SHA1
c272d38b7ec8b55d39b905ca860fc3f9c934ee87
-
SHA256
fe9076326735dc8b49aa31ba634cf6ab6265a7129e5c69f60de8176425a7d786
-
SHA512
f77c8332f44d161f0d296d80945c4f32a7b375640ec33054bc86d54b3ec2b192e315e63297a39c6e4048651c94d9f2403e89dccf57e7413f2a5bddb1d6653990
-
SSDEEP
6144:6DVCynACXF7pI8flAxVKMuELgGRbr4yG:K8vmF7p83b0y
Score
10/10
Malware Config
Extracted
Family
tofsee
C2
vanaheim.cn
jotunheim.name
Signatures
-
Tofsee family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2192-4-0x0000000000400000-0x00000000004F3000-memory.dmp
Headers
Sections