General
-
Target
d5dec165e4b362f2b82b899cc314a15445712ce577c27e5762791a95a281c987
-
Size
603KB
-
Sample
210926-qk5f6sehe2
-
MD5
1516f93688d9622055e418b05836f6d9
-
SHA1
26974fece6e6dea6a284f8b0189af306d50ca31b
-
SHA256
d5dec165e4b362f2b82b899cc314a15445712ce577c27e5762791a95a281c987
-
SHA512
adc9cb5eb0e09e94a254636898e9dd605a19d2962b53c396864600158edd22b7d5b70a1d447e5e90d0a1cf2f053ec164c5c9f9fbaa9f0e3e4a458295ffb36ea0
Static task
static1
Malware Config
Targets
-
-
Target
d5dec165e4b362f2b82b899cc314a15445712ce577c27e5762791a95a281c987
-
Size
603KB
-
MD5
1516f93688d9622055e418b05836f6d9
-
SHA1
26974fece6e6dea6a284f8b0189af306d50ca31b
-
SHA256
d5dec165e4b362f2b82b899cc314a15445712ce577c27e5762791a95a281c987
-
SHA512
adc9cb5eb0e09e94a254636898e9dd605a19d2962b53c396864600158edd22b7d5b70a1d447e5e90d0a1cf2f053ec164c5c9f9fbaa9f0e3e4a458295ffb36ea0
-
Vidar Stealer
-
Downloads MZ/PE file
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-