General
-
Target
2916-373-0x0000000000400000-0x0000000000472000-memory.dmp
-
Size
456KB
-
MD5
9b5c3d474c9493e46e5b68914aa506df
-
SHA1
7b1a7ace3944f67889a153ab53f86bfae3700053
-
SHA256
d3e3901034bf68650da2764a23d37ae8a9d82562e6a0de35bb3aa46255829144
-
SHA512
ea29c555b95735c6d8a185c3cfdd4742020901e99d8adab44de078afee62762c016ed035cd39cc13e57ac76862bc24d628cb827499d5434d19cf3af9a3fb578b
-
SSDEEP
6144:WbbD2RXh9KD7EvVkr0evEcZ7/CUqjfgQlVumrBVRXLTchXfohcW:WbuRX6D7ENiKUqDgYumr3RXLTxN
Score
10/10
Malware Config
Extracted
Family
vidar
Version
3.6
Botnet
5cb879265de0011bfc7588d5d251aee6
C2
https://steamcommunity.com/profiles/76561199499188534
https://t.me/nutalse
Attributes
-
profile_id_v2
5cb879265de0011bfc7588d5d251aee6
-
user_agent
Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36
Signatures
-
Vidar family
Files
-
2916-373-0x0000000000400000-0x0000000000472000-memory.dmp
Headers
Sections