vidar | 6f20e8f1b4514204c76ee6ac5fccf35e637546bdd9f8739b709d66dd3748e3c6 | Triage

Submit
Reports

Overview

overview

Static

static

6f20e8f1b4...c6.exe

windows7_x64

6f20e8f1b4...c6.exe

windows10-2004_x64

Sharing

General

Target

6f20e8f1b4514204c76ee6ac5fccf35e637546bdd9f8739b709d66dd3748e3c6
Size

628KB
Sample

220215-pmrgnagbak
MD5

761674fa96c65b579d2918c740712e19
SHA1

ff96a97efdd1e9bc2c1c8ae5a6650fbf314b79bb
SHA256

6f20e8f1b4514204c76ee6ac5fccf35e637546bdd9f8739b709d66dd3748e3c6
SHA512

68ad01b44293b2380f1a0560ccbf53b06d82bd526a3c5179ce9697a24331159810380606ee9a51706abac076d3a7dce7c7de7943ac076372c1613f17a22c63a2

Score

10^/10

vidar 933 stealer

Static task

static1

Behavioral task

behavioral1

Sample

6f20e8f1b4514204c76ee6ac5fccf35e637546bdd9f8739b709d66dd3748e3c6.exe

Resource

win7-en-20211208

vidar 933 stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

6f20e8f1b4514204c76ee6ac5fccf35e637546bdd9f8739b709d66dd3748e3c6.exe

Resource

win10v2004-en-20220113

vidar 933 stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

vidar

Version

48.2

Botnet

933

C2

https://koyu.space/@qmashton

Attributes

profile_id
933

Targets

- Target
  
  6f20e8f1b4514204c76ee6ac5fccf35e637546bdd9f8739b709d66dd3748e3c6
- Size
  
  628KB
- MD5
  
  761674fa96c65b579d2918c740712e19
- SHA1
  
  ff96a97efdd1e9bc2c1c8ae5a6650fbf314b79bb
- SHA256
  
  6f20e8f1b4514204c76ee6ac5fccf35e637546bdd9f8739b709d66dd3748e3c6
- SHA512
  
  68ad01b44293b2380f1a0560ccbf53b06d82bd526a3c5179ce9697a24331159810380606ee9a51706abac076d3a7dce7c7de7943ac076372c1613f17a22c63a2
Score

10^/10

vidar 933 stealer
- Suspicious use of NtCreateProcessExOtherParentProcess
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vidar933stealer

behavioral2

vidar933stealer

© 2018-2024

Terms | Privacy