Overview

overview

10

Static

static

3

file.exe

windows7-x64

1

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    393KB

  • Sample

    240428-lkxzwacg36

  • MD5

    ff733e726fcfa0e0d094632aa19b4065

  • SHA1

    edd1869fd8dfdfc66c4dd2dddb9aaeaf2abddcf6

  • SHA256

    ca3e439e801067d9e9bc06009833c499021275bbf4ae0ecfa6d431954896fcb3

  • SHA512

    25db239d607b61d5d23920b1b9e92f3631c69bbe54ff97494ab1665d542a9b055e7c97fcc0cd68211685a50eba2b48b8901c7354db1932528cbe4b0cc1a9fe57

  • SSDEEP

    6144:wGNRPs+yOtDqvFTbThqw4qMNSxPzv1j2gD4x7UKW6QYjP:3RPs+yOoDqfXNSx87UKpjP

Score
10/10
vidarstealer

Malware Config

Extracted

Family

vidar

C2

https://steamcommunity.com/profiles/76561199677575543

https://t.me/snsb82
Attributes
  • user_agent

    Mozilla/5.0 (Windows NT 10.0; rv:109.0) Gecko/20100101 Firefox/115.0

Targets

    • Target

      file.exe

    • Size

      393KB

    • MD5

      ff733e726fcfa0e0d094632aa19b4065

    • SHA1

      edd1869fd8dfdfc66c4dd2dddb9aaeaf2abddcf6

    • SHA256

      ca3e439e801067d9e9bc06009833c499021275bbf4ae0ecfa6d431954896fcb3

    • SHA512

      25db239d607b61d5d23920b1b9e92f3631c69bbe54ff97494ab1665d542a9b055e7c97fcc0cd68211685a50eba2b48b8901c7354db1932528cbe4b0cc1a9fe57

    • SSDEEP

      6144:wGNRPs+yOtDqvFTbThqw4qMNSxPzv1j2gD4x7UKW6QYjP:3RPs+yOoDqfXNSx87UKpjP

    Score
    10/10
    vidarstealer

    • Detect Vidar Stealer

      stealer

    • Vidar

      Vidar is an infostealer based on Arkei stealer.

      stealervidar

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks