vidar | 5ef842365d3acfb6367643cb09d37742a6d20a8aaaeeea641412b1eca273276f | Triage

Sharing

General

Target

2380-174-0x0000000000B00000-0x0000000000B69000-memory.dmp
Size

420KB
Sample

221017-lxap4sbdh3
MD5

cd8a257cbf1c4ef0ae46813af54a054b
SHA1

5cc5b85155a882fbc139238e84081473f287e931
SHA256

5ef842365d3acfb6367643cb09d37742a6d20a8aaaeeea641412b1eca273276f
SHA512

d71cac388eeda6e66cc929ec0d901a8a95b0e5c0c34cb6de535ba60e522bab5850bbfca16f758bc224d950e1cbba1d00ab280e64f99677049c60bf26c9efc64a
SSDEEP

6144:daKDSkLf2NPLrxZV7dC6sDDltztygJcKY6+nivYKyuB/1OBM:YWSkLeNDLVxHCtztdyx6+nigKk2

Score

10^/10

vidar 1680

Malware Config

Extracted

Family

vidar

Version

55

Botnet

1680

C2

https://t.me/truewallets

https://mas.to/@zara99

http://116.203.10.3:80

Attributes

profile_id
1680

Targets

- Target
  
  2380-174-0x0000000000B00000-0x0000000000B69000-memory.dmp
- Size
  
  420KB
- MD5
  
  cd8a257cbf1c4ef0ae46813af54a054b
- SHA1
  
  5cc5b85155a882fbc139238e84081473f287e931
- SHA256
  
  5ef842365d3acfb6367643cb09d37742a6d20a8aaaeeea641412b1eca273276f
- SHA512
  
  d71cac388eeda6e66cc929ec0d901a8a95b0e5c0c34cb6de535ba60e522bab5850bbfca16f758bc224d950e1cbba1d00ab280e64f99677049c60bf26c9efc64a
- SSDEEP
  
  6144:daKDSkLf2NPLrxZV7dC6sDDltztygJcKY6+nivYKyuB/1OBM:YWSkLeNDLVxHCtztdyx6+nigKk2
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2