vidar | 2bd86a0953773af244e0ebbc94854e950e3f7daa282e5b750f38610d07d7bf5d | Triage

Submit
Reports

Overview

overview

Static

static

eufive_202...57.exe

windows7_x64

eufive_202...57.exe

windows10_x64

Sharing

General

Target

eufive_20211107-191557
Size

726KB
Sample

211107-1h8qxsbad7
MD5

93e0f8e8fcb6d03282c9bbbd064c921d
SHA1

18c25a6a9cbe96ebb5739fc72bb4902e1a784175
SHA256

2bd86a0953773af244e0ebbc94854e950e3f7daa282e5b750f38610d07d7bf5d
SHA512

35c6214621079cb1a725954ee594d5b0d588a71ebf876a3355f54c815c347109b6b74b6572554f06ba41ce00ce52a69d4d7e9bcd447b21ebc300be4fee09367f

Score

10^/10

vidar 824 stealer

Static task

static1

Behavioral task

behavioral1

Sample

eufive_20211107-191557.exe

Resource

win7-en-20211014

vidar 824 stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

eufive_20211107-191557.exe

Resource

win10-en-20211104

vidar 824 stealer

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

vidar

Version

47.9

Botnet

824

Attributes

profile_id
824

Targets

- Target
  
  eufive_20211107-191557
- Size
  
  726KB
- MD5
  
  93e0f8e8fcb6d03282c9bbbd064c921d
- SHA1
  
  18c25a6a9cbe96ebb5739fc72bb4902e1a784175
- SHA256
  
  2bd86a0953773af244e0ebbc94854e950e3f7daa282e5b750f38610d07d7bf5d
- SHA512
  
  35c6214621079cb1a725954ee594d5b0d588a71ebf876a3355f54c815c347109b6b74b6572554f06ba41ce00ce52a69d4d7e9bcd447b21ebc300be4fee09367f
Score

10^/10

vidar 824 stealer
- Suspicious use of NtCreateProcessExOtherParentProcess
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

vidar824stealer

behavioral2

vidar824stealer

© 2018-2024

Terms | Privacy