vidar | 9d4f3c4a7bce15559a9501b2c7d2ecf8f005a1b325dd407dff8054ed0e3e9b17 | Triage

Submit
Reports

Overview

overview

Static

static

1

9d4f3c4a7b...17.exe

windows7-x64

9d4f3c4a7b...17.exe

windows10-2004-x64

Sharing

General

Target

9d4f3c4a7bce15559a9501b2c7d2ecf8f005a1b325dd407dff8054ed0e3e9b17.exe
Size

722KB
Sample

230322-1yy7esbf65
MD5

bc8eaaafd8feb26a72f74dcdb99c7865
SHA1

818aa87338d4df601db15f976b70b016e2e23d06
SHA256

9d4f3c4a7bce15559a9501b2c7d2ecf8f005a1b325dd407dff8054ed0e3e9b17
SHA512

c49c05d3663529b949863cb714d3cbfe7869551e4a6b57dc5281c7ba569fe1c90481a135fb689edf8bd7121b48fd78eb9efe2a0d8960023d161ec0f47f5bfcad
SSDEEP

12288:CqwqmzMqKXta27mbBbToDKh5lcGWIaM510JbK5Nozb9H5eoENNkHX:lfmSXs2+baI5l1uc64N2

Score

10^/10

vidar 517 stealer

Static task

static1

Behavioral task

behavioral1

Sample

9d4f3c4a7bce15559a9501b2c7d2ecf8f005a1b325dd407dff8054ed0e3e9b17.exe

Resource

win7-20230220-en

vidar 517 stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

9d4f3c4a7bce15559a9501b2c7d2ecf8f005a1b325dd407dff8054ed0e3e9b17.exe

Resource

win10v2004-20230221-en

vidar 517 stealer

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

48.7

Botnet

517

C2

https://mstdn.social/@anapa

https://mastodon.social/@mniami

Attributes

profile_id
517

Targets

- Target
  
  9d4f3c4a7bce15559a9501b2c7d2ecf8f005a1b325dd407dff8054ed0e3e9b17.exe
- Size
  
  722KB
- MD5
  
  bc8eaaafd8feb26a72f74dcdb99c7865
- SHA1
  
  818aa87338d4df601db15f976b70b016e2e23d06
- SHA256
  
  9d4f3c4a7bce15559a9501b2c7d2ecf8f005a1b325dd407dff8054ed0e3e9b17
- SHA512
  
  c49c05d3663529b949863cb714d3cbfe7869551e4a6b57dc5281c7ba569fe1c90481a135fb689edf8bd7121b48fd78eb9efe2a0d8960023d161ec0f47f5bfcad
- SSDEEP
  
  12288:CqwqmzMqKXta27mbBbToDKh5lcGWIaM510JbK5Nozb9H5eoENNkHX:lfmSXs2+baI5l1uc64N2
Score

10^/10

vidar 517 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vidar517stealer

behavioral2

vidar517stealer

© 2018-2024

Terms | Privacy