vidar | cc2b1bd21d20f4b2e5266079d9a92c2fb94baab14f771030402b407a16b6239a | Triage

Sharing

General

Target

844-69-0x0000000000070000-0x00000000000CE000-memory.dmp
Size

376KB
Sample

221011-kfv42sebh4
MD5

9f19a2f261ccb8b00356d595d67d312f
SHA1

181c059f7e04500dd5c24b9687778745d4512946
SHA256

cc2b1bd21d20f4b2e5266079d9a92c2fb94baab14f771030402b407a16b6239a
SHA512

5e71e2f14a77ac05b7bfcce57d5e94718bd8fc3d0865e39865e0e414a5c0dcd3066222b8fb1e61b6da5bc62aaecfccfc551f445ae7291c3e08713134c484c991
SSDEEP

6144:4PPUOrfsJEuQjjduI4hciusrrYCCt+qsc+k00/:6ruQjJWDXdCt+Fc+k0

Score

10^/10

vidar 1680

Malware Config

Extracted

Family

vidar

Version

54.9

Botnet

1680

C2

https://t.me/larsenup

https://ioc.exchange/@zebra54

Attributes

profile_id
1680

Targets

- Target
  
  844-69-0x0000000000070000-0x00000000000CE000-memory.dmp
- Size
  
  376KB
- MD5
  
  9f19a2f261ccb8b00356d595d67d312f
- SHA1
  
  181c059f7e04500dd5c24b9687778745d4512946
- SHA256
  
  cc2b1bd21d20f4b2e5266079d9a92c2fb94baab14f771030402b407a16b6239a
- SHA512
  
  5e71e2f14a77ac05b7bfcce57d5e94718bd8fc3d0865e39865e0e414a5c0dcd3066222b8fb1e61b6da5bc62aaecfccfc551f445ae7291c3e08713134c484c991
- SSDEEP
  
  6144:4PPUOrfsJEuQjjduI4hciusrrYCCt+qsc+k00/:6ruQjJWDXdCt+Fc+k0
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2