General
-
Target
976515fb47af30526e1e6b3db5d14ab28bc3a361e1a4dd14f9797c1fbedbf863
-
Size
742KB
-
Sample
211015-agnfgsadd8
-
MD5
0eac2fdc64e289d30466ff22618edb5d
-
SHA1
3481f541e73941a052782b2f74b6e0486f973c40
-
SHA256
976515fb47af30526e1e6b3db5d14ab28bc3a361e1a4dd14f9797c1fbedbf863
-
SHA512
60f7d0998c011695b7753c1555246b6998fc9c8fa179a6cd563c414afc352c5a0d69afbd55c913b259df23bd00dde419f46f44f8f48db3ad43294c4ae041287b
Static task
static1
Malware Config
Extracted
vidar
41.3
1008
https://mas.to/@oleg98
-
profile_id
1008
Targets
-
-
Target
976515fb47af30526e1e6b3db5d14ab28bc3a361e1a4dd14f9797c1fbedbf863
-
Size
742KB
-
MD5
0eac2fdc64e289d30466ff22618edb5d
-
SHA1
3481f541e73941a052782b2f74b6e0486f973c40
-
SHA256
976515fb47af30526e1e6b3db5d14ab28bc3a361e1a4dd14f9797c1fbedbf863
-
SHA512
60f7d0998c011695b7753c1555246b6998fc9c8fa179a6cd563c414afc352c5a0d69afbd55c913b259df23bd00dde419f46f44f8f48db3ad43294c4ae041287b
-
Vidar Stealer
-
Downloads MZ/PE file
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-