vidar | 04927fb6b7abf7ff94b7b5f3ae72a3745d19e6e7088763e3e121b9f54a5d905c | Triage

Submit
Reports

Overview

overview

Static

static

04927fb6b7...5c.exe

windows7_x64

04927fb6b7...5c.exe

windows10-2004_x64

Sharing

General

Target

04927fb6b7abf7ff94b7b5f3ae72a3745d19e6e7088763e3e121b9f54a5d905c
Size

679KB
Sample

220215-te6zlagga3
MD5

8e998231db502501ae9d1340717c5e93
SHA1

852e491a3a3e61e5fa85927c7cb39c1618f61e0c
SHA256

04927fb6b7abf7ff94b7b5f3ae72a3745d19e6e7088763e3e121b9f54a5d905c
SHA512

b8a2beffcc5a7cdf6e4b2ce91de592a97cef45f6813198e457c979f57949276d8aa1b4077243d064c00913c900c8ff3c5c27abb199bc9f9941eee4ce9ac9a8d8

Score

10^/10

vidar 937 stealer

Static task

static1

Behavioral task

behavioral1

Sample

04927fb6b7abf7ff94b7b5f3ae72a3745d19e6e7088763e3e121b9f54a5d905c.exe

Resource

win7-en-20211208

vidar 937 stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

04927fb6b7abf7ff94b7b5f3ae72a3745d19e6e7088763e3e121b9f54a5d905c.exe

Resource

win10v2004-en-20220113

vidar 937 stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

vidar

Version

48.5

Botnet

937

C2

https://koyu.space/@tttaj

Attributes

profile_id
937

Targets

- Target
  
  04927fb6b7abf7ff94b7b5f3ae72a3745d19e6e7088763e3e121b9f54a5d905c
- Size
  
  679KB
- MD5
  
  8e998231db502501ae9d1340717c5e93
- SHA1
  
  852e491a3a3e61e5fa85927c7cb39c1618f61e0c
- SHA256
  
  04927fb6b7abf7ff94b7b5f3ae72a3745d19e6e7088763e3e121b9f54a5d905c
- SHA512
  
  b8a2beffcc5a7cdf6e4b2ce91de592a97cef45f6813198e457c979f57949276d8aa1b4077243d064c00913c900c8ff3c5c27abb199bc9f9941eee4ce9ac9a8d8
Score

10^/10

vidar 937 stealer
- Suspicious use of NtCreateProcessExOtherParentProcess
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vidar937stealer

behavioral2

vidar937stealer

© 2018-2024

Terms | Privacy