vidar | c2caba260a9be5ad379a78211931ad66d1224aed61aee239874f5677f5aa38f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Setup.exe
Size

565KB
Sample

221206-ws6xvsbe43
MD5

bc5ebf97ae668d11a385376547aa354c
SHA1

2199b87ae98972c5326db7675bcec7ba1020b521
SHA256

c2caba260a9be5ad379a78211931ad66d1224aed61aee239874f5677f5aa38f9
SHA512

b268b88a7a15f7ae43c5d4614f5d0a4d6d692dd37de70adfe8c761627b9ad16f6a4cc0f7c2262bbe1e346d370b2c826456209aeaff36232993be275b8a0a76f5
SSDEEP

6144:4Gcv7hFS8jgMrXrQ+tIbVDp5yjePlF5WBwVvzsw+rX7kv4Eok7tlVmiUKGMueVLt:4G0773IBFtleBI7swYqUKmiBVLA

Score

10^/10

vidar 1871 stealer

Malware Config

Extracted

Family

vidar

Version

56

Botnet

1871

C2

https://t.me/asifrazatg

https://steamcommunity.com/profiles/76561199439929669

Attributes

profile_id
1871

Targets

- Target
  
  Setup.exe
- Size
  
  565KB
- MD5
  
  bc5ebf97ae668d11a385376547aa354c
- SHA1
  
  2199b87ae98972c5326db7675bcec7ba1020b521
- SHA256
  
  c2caba260a9be5ad379a78211931ad66d1224aed61aee239874f5677f5aa38f9
- SHA512
  
  b268b88a7a15f7ae43c5d4614f5d0a4d6d692dd37de70adfe8c761627b9ad16f6a4cc0f7c2262bbe1e346d370b2c826456209aeaff36232993be275b8a0a76f5
- SSDEEP
  
  6144:4Gcv7hFS8jgMrXrQ+tIbVDp5yjePlF5WBwVvzsw+rX7kv4Eok7tlVmiUKGMueVLt:4G0773IBFtleBI7swYqUKmiBVLA
Score

10^/10

vidar 1871 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

vidar1871stealer

behavioral2

vidar1871stealer