General
-
Target
setup2.exe
-
Size
457KB
-
Sample
230321-y9xrmaeh9z
-
MD5
a966945076f3ac5eb3282a0d1dc2101b
-
SHA1
71c4936cd89ec51e5d8988e6736d9584d6a18b4b
-
SHA256
e33b554abd174a255530352bf7e640f04935eae8bee36034914c131e99c6c339
-
SHA512
939fdf1ec644a2e09739868acbc737a10c19df152ea1b456a370160c31580805336fb7b1c787d6632112d46ec643f8fa940e1c7bb24b3fe06eb39cf2e2cc4d01
-
SSDEEP
12288:NdBCCL9DFn7TvTswnmsyzNkv4Yp2yYiL39g:NdBCCL9DF7Trswcw4k24g
Static task
static1
Behavioral task
behavioral1
Sample
setup2.exe
Resource
win10-20230220-en
Malware Config
Extracted
vidar
2.6
408
https://t.me/robertotalks
https://steamcommunity.com/profiles/76561199480821604
http://95.217.157.160:80
-
profile_id
408
Targets
-
-
Target
setup2.exe
-
Size
457KB
-
MD5
a966945076f3ac5eb3282a0d1dc2101b
-
SHA1
71c4936cd89ec51e5d8988e6736d9584d6a18b4b
-
SHA256
e33b554abd174a255530352bf7e640f04935eae8bee36034914c131e99c6c339
-
SHA512
939fdf1ec644a2e09739868acbc737a10c19df152ea1b456a370160c31580805336fb7b1c787d6632112d46ec643f8fa940e1c7bb24b3fe06eb39cf2e2cc4d01
-
SSDEEP
12288:NdBCCL9DFn7TvTswnmsyzNkv4Yp2yYiL39g:NdBCCL9DF7Trswcw4k24g
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-