General
-
Target
1516-256-0x0000000000400000-0x000000000046C000-memory.dmp
-
Size
432KB
-
MD5
dbb1cf64a5a94b8dacd3a67868ecf8a8
-
SHA1
16191202f4fe30aa43e0a08bbed72d278d98cb3d
-
SHA256
6cc3637450e9010ebfe9318b07d1256da657e3e287311fef38f5dd3a5945fff3
-
SHA512
2f3f51c967826719307d9f06956864476ee02067f8568ef84f26933754aad94487290aca582ec4f2dd2d966cb7b4cc72b7359e6562e6a4e84f5c70f13d49ddc6
-
SSDEEP
6144:cuQRHexo0nwlQvG4IyynVKzVKJ5/eRFHVmGim/9o0wVEhKhBsa:cuQRHexo0n24zVK32RRVmGiYwVbhu
Score
10/10
Malware Config
Extracted
Family
vidar
Version
3.1
Botnet
00d92484c9b27bc8482a2cc94cacc508
C2
https://steamcommunity.com/profiles/76561199472266392
https://t.me/tabootalks
http://135.181.26.183:80
Attributes
-
profile_id_v2
00d92484c9b27bc8482a2cc94cacc508
Signatures
-
Vidar family
Files
-
1516-256-0x0000000000400000-0x000000000046C000-memory.dmp
Headers
Sections