General
-
Target
eufive_20211027-061720
-
Size
752KB
-
Sample
211027-l1la1sbeh8
-
MD5
810ecd95ef438c1cfba3693f5bb10ba8
-
SHA1
ffebfb5846f1674f910144756cf07d4e484c7e8a
-
SHA256
7546358c9838138f960c72057cf1a7e770115013ecf48c1fbbbbef2e44ad5596
-
SHA512
12d2354fd31db673cb2343b67f1cb8ac624073c773cdfcb8e7ab107adb3d5d7f313fa0b91c9f56419b1d959cbb8b46c00308cc3e68e5ecaba2dd269ee5c744de
Static task
static1
Behavioral task
behavioral1
Sample
eufive_20211027-061720.exe
Resource
win7-en-20210920
Malware Config
Extracted
vidar
41.6
865
https://mas.to/@lilocc
-
profile_id
865
Targets
-
-
Target
eufive_20211027-061720
-
Size
752KB
-
MD5
810ecd95ef438c1cfba3693f5bb10ba8
-
SHA1
ffebfb5846f1674f910144756cf07d4e484c7e8a
-
SHA256
7546358c9838138f960c72057cf1a7e770115013ecf48c1fbbbbef2e44ad5596
-
SHA512
12d2354fd31db673cb2343b67f1cb8ac624073c773cdfcb8e7ab107adb3d5d7f313fa0b91c9f56419b1d959cbb8b46c00308cc3e68e5ecaba2dd269ee5c744de
-
Vidar Stealer
-
Downloads MZ/PE file
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-