Overview

overview

10

Static

static

10

4696-456-0...ry.exe

windows7-x64

1

4696-456-0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    4696-456-0x0000000000400000-0x0000000000471000-memory.dmp

  • Size

    452KB

  • MD5

    adeaef6ed80cc2f406b5e9b171910dcc

  • SHA1

    4d112d4fed0c368df3e898c8b4044fe8fe93b17e

  • SHA256

    e1dc0174a89aeb58f9834ee3c18d9d3cc26c103cb44e79f7b6c17399e216bd81

  • SHA512

    b672bb81668e519bbc99ad87b0f35c352754bf4b630e03f243e91262128bd1524e3e321cfe987dedb71702c4fc81866306032275957612afc666f7f826bb757c

  • SSDEEP

    6144:7Vv/3min9NW2AzQTShI21g6BCW7zfmSazcn4v4PHwyCU5Ax4z8KAl:Zv/33ntA8A1phKJcn4vuQys+Ql

Score
10/10
694f12963bedb0c6040fb3c74aac71e5vidar

Malware Config

Extracted

Family

vidar

Version

2.9

Botnet

694f12963bedb0c6040fb3c74aac71e5

C2

https://t.me/nemesisgrow

https://steamcommunity.com/profiles/76561199471222742

http://65.109.12.165:80
Attributes
  • profile_id_v2

    694f12963bedb0c6040fb3c74aac71e5

Signatures

Files

  • 4696-456-0x0000000000400000-0x0000000000471000-memory.dmp
    .exe windows x86


    Headers

    Sections