General
-
Target
eufive_20211009-103236
-
Size
787KB
-
Sample
211009-syh67sfcc7
-
MD5
4f201036e167bd678212b3410b372eca
-
SHA1
558d8a3531f582cdad634d833e8bd8011cedd2f3
-
SHA256
4f0a3bc9ebcebb062b8665aa6281d889fe4cd3dab32c27467f4c3be0e345ebba
-
SHA512
2cf311584f8ad074e4e7de88f2c1beed14aadb0fc9b14dab8abf72068c97d07cb0b145aba313d377ef2659979187492cf141f495d0d2caf0fc802e3001deccc6
Static task
static1
Behavioral task
behavioral1
Sample
eufive_20211009-103236.exe
Resource
win7-en-20210920
Malware Config
Extracted
vidar
41.2
865
https://mas.to/@serg4325
-
profile_id
865
Targets
-
-
Target
eufive_20211009-103236
-
Size
787KB
-
MD5
4f201036e167bd678212b3410b372eca
-
SHA1
558d8a3531f582cdad634d833e8bd8011cedd2f3
-
SHA256
4f0a3bc9ebcebb062b8665aa6281d889fe4cd3dab32c27467f4c3be0e345ebba
-
SHA512
2cf311584f8ad074e4e7de88f2c1beed14aadb0fc9b14dab8abf72068c97d07cb0b145aba313d377ef2659979187492cf141f495d0d2caf0fc802e3001deccc6
-
Vidar Stealer
-
Downloads MZ/PE file
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-