General
-
Target
2844-305-0x0000000000400000-0x000000000081B000-memory.dmp
-
Size
4.1MB
-
MD5
8736204fcf1c490b47dabae8480c0af6
-
SHA1
4ff518ce0689025f52a3b664e6b4e71e72168021
-
SHA256
5a7a7c344ccc4a073d7f659b3ba8b9115419ef50f6fb53a78b9d988e2f020a63
-
SHA512
6bc35bbf4603b83d844b7c9723aa0d395acd5b28882c5384e5fc4fa8fd1502e985394a5bce4bfda976a21758eb82c33f54b194865677942756d8c4164b28935d
-
SSDEEP
6144:CDZmBlZ87p0vRhZ/u8AfjVO0M9qm9YwTjOYRLXhMN0eM4unlCV+4:CDZmBi0BA7g0Wqm9hjOYRLaFM4olCVH
Score
10/10
Malware Config
Extracted
Family
vidar
Version
3.4
Botnet
e749025c61b2caca10aa829a9e1a65a1
C2
https://steamcommunity.com/profiles/76561199494593681
https://t.me/auftriebs
Attributes
-
profile_id_v2
e749025c61b2caca10aa829a9e1a65a1
-
user_agent
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:105.0) Gecko/20100101 Firefox/105.0
Signatures
-
Vidar family
Files
-
2844-305-0x0000000000400000-0x000000000081B000-memory.dmp
Headers
Sections