General
-
Target
1072-64-0x0000000000400000-0x0000000000472000-memory.dmp
-
Size
456KB
-
MD5
f1065ed683da40a7733ee523017f6021
-
SHA1
e9fe8724491fc3ed9d1bef3c3869e63849951b2b
-
SHA256
6c83ba2f4b074fe1701a35dd70dbf591ebc61fceabc38f6621b00a53281e6ced
-
SHA512
13d04f1730dd676eecf9b8928eda6bdfd8485e0d806b5e39564db4b89b6f84108bd0103cbe3f2e076e5e5f07639940bf514ba026fc6a67530cd06e7b29fa6c89
-
SSDEEP
6144:tdKjnkosv9932C+v4G3es38QMXPuR47TkaQGgFfhDV96UiSlg:tdgnkz998v7j37MX2uTkaQGgphDV9
Score
10/10
Malware Config
Extracted
Family
vidar
Version
2.4
Botnet
682
C2
http://46.151.26.234:80
https://t.me/gurutist
https://steamcommunity.com/profiles/76561199476091435
http://95.216.164.28:80
Attributes
-
profile_id
682
-
user_agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36
Signatures
-
Vidar family
Files
-
1072-64-0x0000000000400000-0x0000000000472000-memory.dmp
Headers
Sections