General

  • Target

    4404-656-0x000000000042161D-mapping.dmp

  • Size

    667KB

  • MD5

    69f2911a1bd50e4728b10caa997bdd9b

  • SHA1

    bd6bed8bc943d708286ae6283b4de541164fa0f5

  • SHA256

    03f6bfcd9fa693b070cd893021366e191c6aca5a0b30c3edc6c9ea723a83bcd8

  • SHA512

    608893177170e6323cbf29d5038b79cc1f3615d9d849e90e2297b686156f527962f6fd2e9a20402c6761cbd8a29f5edf736dc198ec2b52ba6b4173ab27a575cf

  • SSDEEP

    12288:kjSn3dW0OM0JKHAGNwX8jSn3dW0OM0JKHNGNwXC:k2nttOMZHAqws2nttOMZHNqwy

Score
10/10

Malware Config

Extracted

Family

vidar

Version

54.9

Botnet

517

C2

https://t.me/larsenup

https://ioc.exchange/@zebra54

Attributes
  • profile_id

    517

Signatures

Files

  • 4404-656-0x000000000042161D-mapping.dmp