General
-
Target
eufive_20211112-061145
-
Size
628KB
-
Sample
211112-lctbqadab9
-
MD5
7629c0e8fc76ac80933da70de4c707c7
-
SHA1
0f8185ba21954f1e40e26b25a8d8ac6c561ee5cf
-
SHA256
f6fd6713021d9dcca36439b6f407be3a1d8a9191b503a4b5dfe197ea5c69a3ca
-
SHA512
b3f903221be09bf631aca7d8460acd2c4462b0634a88cb02fb389dd90f9c4e434cc784c08bea36708edcaecd024cd95bd250699e2b7a1d69cc6b8defd0c02749
Static task
static1
Behavioral task
behavioral1
Sample
eufive_20211112-061145.exe
Resource
win7-en-20211104
Malware Config
Extracted
vidar
48.3
824
-
profile_id
824
Targets
-
-
Target
eufive_20211112-061145
-
Size
628KB
-
MD5
7629c0e8fc76ac80933da70de4c707c7
-
SHA1
0f8185ba21954f1e40e26b25a8d8ac6c561ee5cf
-
SHA256
f6fd6713021d9dcca36439b6f407be3a1d8a9191b503a4b5dfe197ea5c69a3ca
-
SHA512
b3f903221be09bf631aca7d8460acd2c4462b0634a88cb02fb389dd90f9c4e434cc784c08bea36708edcaecd024cd95bd250699e2b7a1d69cc6b8defd0c02749
-
Vidar Stealer
-
Downloads MZ/PE file
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-