vidar | 0f3752cdf6653a331205269e6bd6ca4e265247847eed5be677bf758f29235d08 | Triage

Submit
Reports

Overview

overview

Static

static

Wed191029a419a6.exe

windows7-x64

Wed191029a419a6.exe

windows10-2004-x64

Sharing

General

Target

Wed191029a419a6.exe
Size

608KB
Sample

220723-c2fbqabfen
MD5

ef35dc59b9fa276abf18124fe027d531
SHA1

da30b182d738ba13522a47dcacafde6c95fd4c81
SHA256

0f3752cdf6653a331205269e6bd6ca4e265247847eed5be677bf758f29235d08
SHA512

77e99b97dd775271a4dd650653cf25d518dea3ce0583791357d549b69ae55d2771b59c7b7759e4527693544a301e88e6666ab6c750aa8302cabac7ac1b2b0190

Score

10^/10

vidar 706 stealer

Static task

static1

Behavioral task

behavioral1

Sample

Wed191029a419a6.exe

Resource

win7-20220718-en

vidar 706 stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

Wed191029a419a6.exe

Resource

win10v2004-20220721-en

vidar 706 stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

40.1

Botnet

706

C2

https://eduarroma.tumblr.com/

Attributes

profile_id
706

Targets

- Target
  
  Wed191029a419a6.exe
- Size
  
  608KB
- MD5
  
  ef35dc59b9fa276abf18124fe027d531
- SHA1
  
  da30b182d738ba13522a47dcacafde6c95fd4c81
- SHA256
  
  0f3752cdf6653a331205269e6bd6ca4e265247847eed5be677bf758f29235d08
- SHA512
  
  77e99b97dd775271a4dd650653cf25d518dea3ce0583791357d549b69ae55d2771b59c7b7759e4527693544a301e88e6666ab6c750aa8302cabac7ac1b2b0190
Score

10^/10

vidar 706 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vidar706stealer

behavioral2

vidar706stealer

© 2018-2024

Terms | Privacy