Overview

overview

10

Static

static

10

2168-374-0...ry.exe

windows7-x64

1

2168-374-0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2168-374-0x0000000000400000-0x0000000000471000-memory.dmp

  • Size

    452KB

  • MD5

    5f3172035521ce9fee3bfeef2c26ef4a

  • SHA1

    8b14beb82e60700622d597ae590997bb4e768fdf

  • SHA256

    5f38834ff0dff0720a2d055ee1ea2628fc1fef35d6ae76e634a18bbc073cf463

  • SHA512

    38af89568de1b3a7e185245a6601e0fbe949b82f150623061f385fbbb4928d1582581b1f55e2d8550e79240916c5a6eee77b39b2fa2fcc52bd934923f53d14c4

  • SSDEEP

    6144:7Vv/3min9NW2AzQTShI21g6BCW7zfmSazcn4v4sHwyCU5Ax5/rKAl:Zv/33ntA8A1phKJcn4vxQysfNl

Score
10/10
694f12963bedb0c6040fb3c74aac71e5vidar

Malware Config

Extracted

Family

vidar

Version

2.9

Botnet

694f12963bedb0c6040fb3c74aac71e5

C2

https://t.me/nemesisgrow

https://steamcommunity.com/profiles/76561199471222742

http://65.109.12.165:80
Attributes
  • profile_id_v2

    694f12963bedb0c6040fb3c74aac71e5

Signatures

Files

  • 2168-374-0x0000000000400000-0x0000000000471000-memory.dmp
    .exe windows x86


    Headers

    Sections