General
-
Target
b3dd1655ef724dd9429d64625a80474c3b5d74d5c1cc806e11be89435ac0cd5a
-
Size
772KB
-
Sample
220215-hq3krsdddr
-
MD5
c0c1c445b62bf70f0de2341e06eb3817
-
SHA1
a1cc41eda4ba9a1ffc018739a25548dd63bddfd0
-
SHA256
b3dd1655ef724dd9429d64625a80474c3b5d74d5c1cc806e11be89435ac0cd5a
-
SHA512
2c50aa38410c0d7668b4bea21e2018046328ca393a755522a86e895aea2511f062bcf123ce2cf8c2fef956f92e7d32dd1a37f9c21562e753e5f5d84c6e080f83
Static task
static1
Behavioral task
behavioral1
Sample
b3dd1655ef724dd9429d64625a80474c3b5d74d5c1cc806e11be89435ac0cd5a.exe
Resource
win7-en-20211208
Malware Config
Extracted
vidar
47.9
933
https://mas.to/@kirpich
-
profile_id
933
Targets
-
-
Target
b3dd1655ef724dd9429d64625a80474c3b5d74d5c1cc806e11be89435ac0cd5a
-
Size
772KB
-
MD5
c0c1c445b62bf70f0de2341e06eb3817
-
SHA1
a1cc41eda4ba9a1ffc018739a25548dd63bddfd0
-
SHA256
b3dd1655ef724dd9429d64625a80474c3b5d74d5c1cc806e11be89435ac0cd5a
-
SHA512
2c50aa38410c0d7668b4bea21e2018046328ca393a755522a86e895aea2511f062bcf123ce2cf8c2fef956f92e7d32dd1a37f9c21562e753e5f5d84c6e080f83
-
Suspicious use of NtCreateProcessExOtherParentProcess
-
Vidar Stealer
-