General
-
Target
eufive_20210920-004754
-
Size
672KB
-
Sample
210926-nykmtaege6
-
MD5
759483ef7848aad8bcf568d41a71cca5
-
SHA1
3dfe06e3bf32c1ea623586069169ecc1d14b1ea3
-
SHA256
6db165fffa378d373fe7f16c1f59ba1b7aa2ac635ce6dcdb374d846ab87d945e
-
SHA512
a85cb26413263eab22c044274e631c482dcbf69e8340889213e6d6c557f644e3396dc12d302845e0c98c8550af9d3ce8da209d8cd6c6183b17065a47bf5de00b
Static task
static1
Behavioral task
behavioral1
Sample
eufive_20210920-004754.exe
Resource
win7v20210408
Malware Config
Extracted
vidar
40.7
865
https://petrenko96.tumblr.com/
-
profile_id
865
Targets
-
-
Target
eufive_20210920-004754
-
Size
672KB
-
MD5
759483ef7848aad8bcf568d41a71cca5
-
SHA1
3dfe06e3bf32c1ea623586069169ecc1d14b1ea3
-
SHA256
6db165fffa378d373fe7f16c1f59ba1b7aa2ac635ce6dcdb374d846ab87d945e
-
SHA512
a85cb26413263eab22c044274e631c482dcbf69e8340889213e6d6c557f644e3396dc12d302845e0c98c8550af9d3ce8da209d8cd6c6183b17065a47bf5de00b
-
Suspicious use of NtCreateProcessExOtherParentProcess
-
Vidar Stealer
-