Overview

overview

10

Static

static

35ae3a5b46...e7.exe

windows7-x64

10

35ae3a5b46...e7.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    35ae3a5b46b442f5e116f7c5341ba6878151a334f1c3990797a63b4a810d3ae7.bin

  • Size

    295KB

  • Sample

    230125-nbne7ahd8z

  • MD5

    dcb4b9f3a78f458deea5f69dc4d19976

  • SHA1

    b31128f41584cab87360e73367ef91f90f5435b7

  • SHA256

    35ae3a5b46b442f5e116f7c5341ba6878151a334f1c3990797a63b4a810d3ae7

  • SHA512

    efcde450c4a35b75d0f13db7ef804143a94b0b99e212e5828f6e8ebefb7122d5587f5e60506228a0408fb8b481bc4295b23126e706034747f35aa042e59e2d5c

  • SSDEEP

    6144:KDltocl17PusHTdPWZYRc9YxrjVoP43ATwpOsEah:Kscfu4pPQOvAHTSdES

Score
10/10
vidar14stealer

Malware Config

Extracted

Family

vidar

Version

1.3

Botnet

14

C2

https://t.me/samuelljax

https://steamcommunity.com/profiles/76561199439725733
Attributes
  • profile_id

    14

Targets

    • Target

      35ae3a5b46b442f5e116f7c5341ba6878151a334f1c3990797a63b4a810d3ae7.bin

    • Size

      295KB

    • MD5

      dcb4b9f3a78f458deea5f69dc4d19976

    • SHA1

      b31128f41584cab87360e73367ef91f90f5435b7

    • SHA256

      35ae3a5b46b442f5e116f7c5341ba6878151a334f1c3990797a63b4a810d3ae7

    • SHA512

      efcde450c4a35b75d0f13db7ef804143a94b0b99e212e5828f6e8ebefb7122d5587f5e60506228a0408fb8b481bc4295b23126e706034747f35aa042e59e2d5c

    • SSDEEP

      6144:KDltocl17PusHTdPWZYRc9YxrjVoP43ATwpOsEah:Kscfu4pPQOvAHTSdES

    Score
    10/10
    vidar14stealer

    • Vidar

      Vidar is an infostealer based on Arkei stealer.

      stealervidar
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

1
T1130

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks