General

  • Target

    102e9252691dc8857840ffae6582731c2077bff8ac04d054407ba804a058e9c4.com

  • Size

    10.2MB

  • MD5

    eb701a894f2e3202f26d9e0199a6d440

  • SHA1

    4f635af1c4e7669ad5522c999bc632d9d4d53a9a

  • SHA256

    102e9252691dc8857840ffae6582731c2077bff8ac04d054407ba804a058e9c4

  • SHA512

    d87d3b460fd9948da454df80ecde3b49700760bc15c3f3dc0391875fccec8911b29c7e1c88a31c031d2ed40295adcbee0cbcdde612b1225e3d8f1ccf7f7b6df7

  • SSDEEP

    6144:UDVCynACXFFpI0zzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzj:k8vmFFp

Score
10/10

Malware Config

Extracted

Family

tofsee

C2

vanaheim.cn

jotunheim.name

Signatures

  • Tofsee family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 102e9252691dc8857840ffae6582731c2077bff8ac04d054407ba804a058e9c4.com
    .exe windows:5 windows x86 arch:x86

    0bdef4d92a94790d7d279561a490c5bb


    Headers

    Imports

    Sections