vidar | f21a6eaf93ad0cd42964690cb42ead841b6335875b70fc07d57bdc43b857b1dc | Triage

Sharing

General

Target

addf9e7ae25aa8ba6b090e8a24e0bfe0.exe
Size

302KB
Sample

220717-dvackaegep
MD5

addf9e7ae25aa8ba6b090e8a24e0bfe0
SHA1

f4c1e4bd97f5db4abd6a1a12fbf6507adc476f53
SHA256

f21a6eaf93ad0cd42964690cb42ead841b6335875b70fc07d57bdc43b857b1dc
SHA512

dd897687dc0cc81aac8653b2d59734a933e07db0965877f5dcaeb6004c3635dd24db525b517f795cc269b31a0db71699086c57706a161aecda0c39178bc2ad1a

Score

10^/10

vidar 1415 stealer

Malware Config

Extracted

Family

vidar

Version

53.2

Botnet

1415

C2

https://t.me/tgch_hijuly

https://c.im/@olegf9844h

Attributes

profile_id
1415

Targets

- Target
  
  addf9e7ae25aa8ba6b090e8a24e0bfe0.exe
- Size
  
  302KB
- MD5
  
  addf9e7ae25aa8ba6b090e8a24e0bfe0
- SHA1
  
  f4c1e4bd97f5db4abd6a1a12fbf6507adc476f53
- SHA256
  
  f21a6eaf93ad0cd42964690cb42ead841b6335875b70fc07d57bdc43b857b1dc
- SHA512
  
  dd897687dc0cc81aac8653b2d59734a933e07db0965877f5dcaeb6004c3635dd24db525b517f795cc269b31a0db71699086c57706a161aecda0c39178bc2ad1a
Score

10^/10

vidar 1415 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

vidar1415stealer