d5dec165e4b362f2b82b899cc314a15445712ce577c27e5762791a95a281c987

General
Target

d5dec165e4b362f2b82b899cc314a15445712ce577c27e5762791a95a281c987

Size

603KB

Sample

210926-qk5f6sehe2

Score
10 /10
MD5

1516f93688d9622055e418b05836f6d9

SHA1

26974fece6e6dea6a284f8b0189af306d50ca31b

SHA256

d5dec165e4b362f2b82b899cc314a15445712ce577c27e5762791a95a281c987

SHA512

adc9cb5eb0e09e94a254636898e9dd605a19d2962b53c396864600158edd22b7d5b70a1d447e5e90d0a1cf2f053ec164c5c9f9fbaa9f0e3e4a458295ffb36ea0

Malware Config
Targets
Target

d5dec165e4b362f2b82b899cc314a15445712ce577c27e5762791a95a281c987

MD5

1516f93688d9622055e418b05836f6d9

Filesize

603KB

Score
10 /10
SHA1

26974fece6e6dea6a284f8b0189af306d50ca31b

SHA256

d5dec165e4b362f2b82b899cc314a15445712ce577c27e5762791a95a281c987

SHA512

adc9cb5eb0e09e94a254636898e9dd605a19d2962b53c396864600158edd22b7d5b70a1d447e5e90d0a1cf2f053ec164c5c9f9fbaa9f0e3e4a458295ffb36ea0

Tags

Signatures

  • Vidar

    Description

    Vidar is an infostealer based on Arkei stealer.

    Tags

  • Vidar Stealer

    Tags

  • Downloads MZ/PE file

  • Loads dropped DLL

  • Reads user/profile data of web browsers

    Description

    Infostealers often target stored browser data, which can include saved credentials etc.

    Tags

    TTPs

    Data from Local System Credentials in Files
  • Accesses 2FA software files, possible credential harvesting

    Tags

    TTPs

    Data from Local System Credentials in Files
  • Accesses cryptocurrency files/wallets, possible credential harvesting

    Tags

    TTPs

    Data from Local System Credentials in Files
  • Checks installed software on the system

    Description

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    Tags

    TTPs

    Query Registry

Related Tasks

MITRE ATT&CK Matrix
Command and Control
    Credential Access
    Defense Evasion
      Execution
        Exfiltration
          Impact
            Initial Access
              Lateral Movement
                Persistence
                  Privilege Escalation
                    Tasks

                    static1

                    behavioral1

                    10/10