vidar | c20f3a2064caab3bd069686c0b4fe5322ced37532133e3c51582cd2f538d00dc | Triage

Sharing

General

Target

988-54-0x00000000001B0000-0x00000000007B4000-memory.dmp
Size

6.0MB
Sample

221208-22ta1seg4t
MD5

9bd4b426df2673fc90371cc37878dfe9
SHA1

15b160643de0e8bcff55446e67ec8fb1d54751bd
SHA256

c20f3a2064caab3bd069686c0b4fe5322ced37532133e3c51582cd2f538d00dc
SHA512

3686a96fcb4ca63f601fd3514bcd1575faf6248ae6827ffcb0617cacbf2f6b051cb804b95382ea3871d468d453b3aa38a47955895f8c2876fa3fdb8f208d491c
SSDEEP

196608:gZLM4+/J/HW6uqRGvmHmOKQXRzD0IUv3+U:YnMIqRDsCD0DmU

Score

10^/10

vidar 1364 vmprotect

Malware Config

Extracted

Family

vidar

Version

56

Botnet

1364

C2

https://t.me/asifrazatg

https://steamcommunity.com/profiles/76561199439929669

Attributes

profile_id
1364

Targets

- Target
  
  988-54-0x00000000001B0000-0x00000000007B4000-memory.dmp
- Size
  
  6.0MB
- MD5
  
  9bd4b426df2673fc90371cc37878dfe9
- SHA1
  
  15b160643de0e8bcff55446e67ec8fb1d54751bd
- SHA256
  
  c20f3a2064caab3bd069686c0b4fe5322ced37532133e3c51582cd2f538d00dc
- SHA512
  
  3686a96fcb4ca63f601fd3514bcd1575faf6248ae6827ffcb0617cacbf2f6b051cb804b95382ea3871d468d453b3aa38a47955895f8c2876fa3fdb8f208d491c
- SSDEEP
  
  196608:gZLM4+/J/HW6uqRGvmHmOKQXRzD0IUv3+U:YnMIqRDsCD0DmU
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

vmprotect1364vidar

behavioral1

behavioral2