vidar

General

Target

https://www.youtube.com/redirect?event=comments&redir_token=QUFFLUhqbHo1WWJNc0FOYWMtcV9XWVliWWpkTlEtUHd1UXxBQ3Jtc0trTFRqbGZkOUh4RnB1eXBvN1JDYzR2akhRVmduT085cFpjZVdwVU9teFBYYmRwM1M1bTlDUjdianBLMmpPSWt2TFVHYXh4elUwaEllb1VBMGJhckl0cVZ1OHNzVFd5bm1Qcnlsc1hUWk1ZeGFCZGFqSQ&q=http%3A%2F%2Fbit.ly%2F3W3g3NY&stzid=Ugz4oJnB8wBU2kzEnyB4AaABAg
Sample

230331-rtj29sah67

Score

10^/10

Malware Config

Extracted

Family

vidar

Version

56.2

Botnet

1902

C2

https://t.me/aaasas3

Attributes

profile_id
1902

Targets

- Target
  
  https://www.youtube.com/redirect?event=comments&redir_token=QUFFLUhqbHo1WWJNc0FOYWMtcV9XWVliWWpkTlEtUHd1UXxBQ3Jtc0trTFRqbGZkOUh4RnB1eXBvN1JDYzR2akhRVmduT085cFpjZVdwVU9teFBYYmRwM1M1bTlDUjdianBLMmpPSWt2TFVHYXh4elUwaEllb1VBMGJhckl0cVZ1OHNzVFd5bm1Qcnlsc1hUWk1ZeGFCZGFqSQ&q=http%3A%2F%2Fbit.ly%2F3W3g3NY&stzid=Ugz4oJnB8wBU2kzEnyB4AaABAg
Score

10^/10

vidar 1902 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1

T1012

System Information Discovery

1

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Suspicious use of SetThreadContext

MITRE ATT&CK Matrix ATT&CK v6

Tasks

static1

urlscan1

behavioral1