General
-
Target
974a97240c456efd3e47da6d3fcd1063fdfcbeb32d9adb8d3874e105d74deff0.bin.exe
-
Size
365KB
-
Sample
230207-t8t7wsfh4x
-
MD5
77808244bdb7f35042b644d5dc91b5b8
-
SHA1
c467cb6bab3c9b184f74161bc68c811ae2d6d273
-
SHA256
974a97240c456efd3e47da6d3fcd1063fdfcbeb32d9adb8d3874e105d74deff0
-
SHA512
06ac4eb64df09072fa5f6ac2d133fbdb0af8ee68c079ee05136efd108f59ee98495a1a3da82dff9b968084a5224123c96ecfa4d7c5d2871654a7493f7c70cf36
-
SSDEEP
6144:L1R9rz1Q1iUp+eLEcFxE+2u35ZHff6XUWTzbu:L1Rdz1TUNLBQNu35B6P/u
Malware Config
Extracted
vidar
2.3
408
https://t.me/mantarlars
https://steamcommunity.com/profiles/76561199474840123
-
profile_id
408
Targets
-
-
Target
974a97240c456efd3e47da6d3fcd1063fdfcbeb32d9adb8d3874e105d74deff0.bin.exe
-
Size
365KB
-
MD5
77808244bdb7f35042b644d5dc91b5b8
-
SHA1
c467cb6bab3c9b184f74161bc68c811ae2d6d273
-
SHA256
974a97240c456efd3e47da6d3fcd1063fdfcbeb32d9adb8d3874e105d74deff0
-
SHA512
06ac4eb64df09072fa5f6ac2d133fbdb0af8ee68c079ee05136efd108f59ee98495a1a3da82dff9b968084a5224123c96ecfa4d7c5d2871654a7493f7c70cf36
-
SSDEEP
6144:L1R9rz1Q1iUp+eLEcFxE+2u35ZHff6XUWTzbu:L1Rdz1TUNLBQNu35B6P/u
Score7/10-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses 2FA software files, possible credential harvesting
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-