General
-
Target
1196-253-0x0000000000400000-0x000000000046C000-memory.dmp
-
Size
432KB
-
MD5
22549870b0abbceface9d155affe0559
-
SHA1
7820ee787e6ba503557085a915bb220f9043f39a
-
SHA256
881202fc0e7a4b366f6f5aa138859b68d7a028ead8bef95551e9e7a2855ea75a
-
SHA512
b2a81480e6791728a1f4d3f36021263cc425c473d6d35e3e077e2798bb74baf21b3ecc25b9ffb2c77ac6697041b31e8c0a6e03f4cc99da4ce6b2fcdb93818ae7
-
SSDEEP
6144:cuQRHexo0nwlQvG4IyynVKzVKJ5/eRFHVmGiw/9o0wVEhKh5+9a:cuQRHexo0n24zVK32RRVmGiCwVbhA9
Score
10/10
Malware Config
Extracted
Family
vidar
Version
3.1
Botnet
00d92484c9b27bc8482a2cc94cacc508
C2
https://steamcommunity.com/profiles/76561199472266392
https://t.me/tabootalks
http://135.181.26.183:80
Attributes
-
profile_id_v2
00d92484c9b27bc8482a2cc94cacc508
Signatures
-
Vidar family
Files
-
1196-253-0x0000000000400000-0x000000000046C000-memory.dmp
Headers
Sections