vidar | e95e733bac49684b353f36eab6699cf2381fe70a24780b5f9c4652aedde765db | Triage

Submit
Reports

Overview

overview

Static

static

e95e733bac...db.exe

windows7_x64

e95e733bac...db.exe

windows10-2004_x64

Sharing

General

Target

e95e733bac49684b353f36eab6699cf2381fe70a24780b5f9c4652aedde765db
Size

724KB
Sample

220215-frq71sbaf7
MD5

30553fda3c478ad34cd131e8c737fcd5
SHA1

eca040530afda239c342f7d436d51ebbebe2fb2d
SHA256

e95e733bac49684b353f36eab6699cf2381fe70a24780b5f9c4652aedde765db
SHA512

13ed294b8ea980304b6fb6354d5e6b50e2188f213b68613c8bf03c7d791544d31c4b90aabec6fdf558e4a43d47627d3e920929a7f3b854102939b30f162996c2

Score

10^/10

vidar 937 stealer

Static task

static1

Behavioral task

behavioral1

Sample

e95e733bac49684b353f36eab6699cf2381fe70a24780b5f9c4652aedde765db.exe

Resource

win7-en-20211208

vidar 937 stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

e95e733bac49684b353f36eab6699cf2381fe70a24780b5f9c4652aedde765db.exe

Resource

win10v2004-en-20220112

vidar 937 stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

vidar

Version

47.8

Botnet

937

C2

https://mas.to/@romashkin

Attributes

profile_id
937

Targets

- Target
  
  e95e733bac49684b353f36eab6699cf2381fe70a24780b5f9c4652aedde765db
- Size
  
  724KB
- MD5
  
  30553fda3c478ad34cd131e8c737fcd5
- SHA1
  
  eca040530afda239c342f7d436d51ebbebe2fb2d
- SHA256
  
  e95e733bac49684b353f36eab6699cf2381fe70a24780b5f9c4652aedde765db
- SHA512
  
  13ed294b8ea980304b6fb6354d5e6b50e2188f213b68613c8bf03c7d791544d31c4b90aabec6fdf558e4a43d47627d3e920929a7f3b854102939b30f162996c2
Score

10^/10

vidar 937 stealer
- Suspicious use of NtCreateProcessExOtherParentProcess
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vidar937stealer

behavioral2

vidar937stealer

© 2018-2024

Terms | Privacy