vidar | 35ae3a5b46b442f5e116f7c5341ba6878151a334f1c3990797a63b4a810d3ae7

Analysis

max time kernel
126s
max time network
131s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
25-01-2023 11:13

Target

35ae3a5b46b442f5e116f7c5341ba6878151a334f1c3990797a63b4a810d3ae7.exe
Size

295KB
MD5

dcb4b9f3a78f458deea5f69dc4d19976
SHA1

b31128f41584cab87360e73367ef91f90f5435b7
SHA256

35ae3a5b46b442f5e116f7c5341ba6878151a334f1c3990797a63b4a810d3ae7
SHA512

efcde450c4a35b75d0f13db7ef804143a94b0b99e212e5828f6e8ebefb7122d5587f5e60506228a0408fb8b481bc4295b23126e706034747f35aa042e59e2d5c
SSDEEP

6144:KDltocl17PusHTdPWZYRc9YxrjVoP43ATwpOsEah:Kscfu4pPQOvAHTSdES

Score

10^/10

vidar 14 stealer

Family

vidar

Version

1.3

Botnet

https://t.me/samuelljax

https://steamcommunity.com/profiles/76561199439725733

Attributes

C:\Users\Admin\AppData\Local\Temp\35ae3a5b46b442f5e116f7c5341ba6878151a334f1c3990797a63b4a810d3ae7.exe
"C:\Users\Admin\AppData\Local\Temp\35ae3a5b46b442f5e116f7c5341ba6878151a334f1c3990797a63b4a810d3ae7.exe"
1⤵
PID:4972

memory/4972-132-0x00000000005E8000-0x0000000000614000-memory.dmp

Filesize
176KB

Download
memory/4972-133-0x0000000000520000-0x000000000056A000-memory.dmp

Filesize
296KB

Download
memory/4972-134-0x0000000000400000-0x0000000000480000-memory.dmp

Filesize
512KB

Download
memory/4972-135-0x00000000005E8000-0x0000000000614000-memory.dmp

Filesize
176KB

Download
memory/4972-136-0x0000000000400000-0x0000000000480000-memory.dmp

Filesize
512KB

Download