vidar | 4f385cf218fe05b153e2dad071522c780f8959fcd2b61606d27e59d202fcb4f5 | Triage

Submit
Reports

Overview

overview

Static

static

4f385cf218...f5.exe

windows7-x64

4f385cf218...f5.exe

windows10-2004-x64

Sharing

General

Target

4f385cf218fe05b153e2dad071522c780f8959fcd2b61606d27e59d202fcb4f5
Size

1.9MB
Sample

220720-sf4eesgeb3
MD5

d74e3e939a60460a2e38221e8c5ef2e8
SHA1

209f6907cc17b1485605243fd521ee6a6fe4ffcb
SHA256

4f385cf218fe05b153e2dad071522c780f8959fcd2b61606d27e59d202fcb4f5
SHA512

bd3dd0595ce57f2430f370d4d642aa74c4bef482db8180dc31e74a3b2501ef3686ca638831e5bb8ad5f56e2dc620a7029aba7f607f2021286e41654ac60eac61

Score

10^/10

vidar 1148 stealer

Static task

static1

Behavioral task

behavioral1

Sample

4f385cf218fe05b153e2dad071522c780f8959fcd2b61606d27e59d202fcb4f5.exe

Resource

win7-20220718-en

vidar 1148 stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

4f385cf218fe05b153e2dad071522c780f8959fcd2b61606d27e59d202fcb4f5.exe

Resource

win10v2004-20220414-en

vidar 1148 stealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

50.1

Botnet

1148

C2

https://mastodon.online/@k1llerniax

https://koyu.space/@k1llerni2x

Attributes

profile_id
1148

Targets

- Target
  
  4f385cf218fe05b153e2dad071522c780f8959fcd2b61606d27e59d202fcb4f5
- Size
  
  1.9MB
- MD5
  
  d74e3e939a60460a2e38221e8c5ef2e8
- SHA1
  
  209f6907cc17b1485605243fd521ee6a6fe4ffcb
- SHA256
  
  4f385cf218fe05b153e2dad071522c780f8959fcd2b61606d27e59d202fcb4f5
- SHA512
  
  bd3dd0595ce57f2430f370d4d642aa74c4bef482db8180dc31e74a3b2501ef3686ca638831e5bb8ad5f56e2dc620a7029aba7f607f2021286e41654ac60eac61
Score

10^/10

vidar 1148 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vidar1148stealer

behavioral2

vidar1148stealer

© 2018-2024

Terms | Privacy