General
-
Target
52e52d784b2dbfd6cbf10f7ef2316608ef7b6f178b62a69d98ed4d5df2f740ae
-
Size
727KB
-
Sample
211016-jv1gmsbge3
-
MD5
4b2f1a64f8f8622f88296ea1d673acae
-
SHA1
8e9be0d1bf7bfd33c6ad000d4777926098072165
-
SHA256
52e52d784b2dbfd6cbf10f7ef2316608ef7b6f178b62a69d98ed4d5df2f740ae
-
SHA512
925014019049bce2896ac9ca789515e492df7cd3e3499075416e5961130c9753eef068b2b68abb978af2cef0c0166afcdfb9d6b6fff686a7bd830f30e4543cf4
Static task
static1
Malware Config
Extracted
vidar
41.4
1008
https://mas.to/@sslam
-
profile_id
1008
Targets
-
-
Target
52e52d784b2dbfd6cbf10f7ef2316608ef7b6f178b62a69d98ed4d5df2f740ae
-
Size
727KB
-
MD5
4b2f1a64f8f8622f88296ea1d673acae
-
SHA1
8e9be0d1bf7bfd33c6ad000d4777926098072165
-
SHA256
52e52d784b2dbfd6cbf10f7ef2316608ef7b6f178b62a69d98ed4d5df2f740ae
-
SHA512
925014019049bce2896ac9ca789515e492df7cd3e3499075416e5961130c9753eef068b2b68abb978af2cef0c0166afcdfb9d6b6fff686a7bd830f30e4543cf4
-
Vidar Stealer
-
Downloads MZ/PE file
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-