General
-
Target
1860-58-0x0000000000400000-0x000000000046C000-memory.dmp
-
Size
432KB
-
MD5
fdd79c8283c0a3ee61c319a0b5151e9a
-
SHA1
579de58a143ce70d87a28455daab4f7859784edf
-
SHA256
f08e56266dcd1f021bb1b420b5a4136c4634d16a64d858917c09c65b37deeabf
-
SHA512
86d8726f54be4d5e103e844a8355ad3d44d674bacc03b71c1021a53289d7425b3b4b4624e9a31ccb37adc2de3dce6becb47872149d975b638815354e50ad198d
-
SSDEEP
6144:G66+X5aWr8XQY92hN3HMi4SoMGbaZAbLwxMxjCl+vqzSqdBFJwPih0eJ:G6HX5aWrC21oFbmOwSRClaqzvZwPY
Score
10/10
Malware Config
Extracted
Family
vidar
Version
3.4
Botnet
70ff6eed9ac3628684e10ab2b6b6570b
C2
https://steamcommunity.com/profiles/76561199494593681
https://t.me/auftriebs
Attributes
-
profile_id_v2
70ff6eed9ac3628684e10ab2b6b6570b
-
user_agent
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:105.0) Gecko/20100101 Firefox/105.0
Signatures
-
Vidar family
Files
-
1860-58-0x0000000000400000-0x000000000046C000-memory.dmp
Headers
Sections