General
-
Target
eufive_20211008-050120
-
Size
651KB
-
Sample
211008-klrc2sdfh4
-
MD5
5fcd04a401c5e6d78e9123ad369ff993
-
SHA1
4edef8848ff504abac018ffc387247abd7ec3c1d
-
SHA256
b8a6110a93e1ecc649c61198d39e48c9651647c031ccb6bbdda6e498a896639b
-
SHA512
c915748bbc70a6e801e8ca322537c174ab96175d9fbbb3dee5b2ab904177532e16e4a11639103a2700c76bda073a155ff238938cc1a418fb8cc07b771aa6bd1d
Static task
static1
Behavioral task
behavioral1
Sample
eufive_20211008-050120.exe
Resource
win7-en-20210920
Malware Config
Extracted
vidar
41.2
865
https://mas.to/@serg4325
-
profile_id
865
Targets
-
-
Target
eufive_20211008-050120
-
Size
651KB
-
MD5
5fcd04a401c5e6d78e9123ad369ff993
-
SHA1
4edef8848ff504abac018ffc387247abd7ec3c1d
-
SHA256
b8a6110a93e1ecc649c61198d39e48c9651647c031ccb6bbdda6e498a896639b
-
SHA512
c915748bbc70a6e801e8ca322537c174ab96175d9fbbb3dee5b2ab904177532e16e4a11639103a2700c76bda073a155ff238938cc1a418fb8cc07b771aa6bd1d
-
Vidar Stealer
-
Downloads MZ/PE file
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-