vidar | 9216ce78538752ee6d0e249b10760c9eb22afbda401f2b7f262cf40685e6c922 | Triage

Sharing

General

Target

0d864f313f0f8bc51ab95e69e77177ce.bin.bin
Size

247KB
Sample

230501-shkebsgg33
MD5

4305f6617ec3b74d8de165cdae1cd9f6
SHA1

3eeb8675f2a15cc621f552396aa68bb3cf4d1977
SHA256

9216ce78538752ee6d0e249b10760c9eb22afbda401f2b7f262cf40685e6c922
SHA512

9651e798a909253e3979d718290492b195eb43e7ed11b64eebf7c4e1caaea2365d7504d1237b37fa27fbc7f082bc97cc5602d761fc87ea0da8ddd2573a2895d1
SSDEEP

6144:ssdNmkOK1/fc3SJSiCFz83ObbocM2I3B8s8SJQmtMf+gZ:ldNmkOK1/0HiCFzmOSnRJe+gZ

Score

10^/10

vidar 2234cb18bdcd93ea6f4e5f1473025a81 stealer

Malware Config

Extracted

Family

vidar

Version

3.5

Botnet

2234cb18bdcd93ea6f4e5f1473025a81

C2

https://steamcommunity.com/profiles/76561199497218285

https://t.me/tg_duckworld

Attributes

profile_id_v2
2234cb18bdcd93ea6f4e5f1473025a81
user_agent
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.93 Safari/537.36 Vivaldi/3.7

Targets

- Target
  
  722e5c23eff7116dead7e70f52673519604efa15a2743939034cb2fccd1c4672.exe
- Size
  
  326KB
- MD5
  
  0d864f313f0f8bc51ab95e69e77177ce
- SHA1
  
  cfe61207e7f7f1c4d3104425d2257f301e07f433
- SHA256
  
  722e5c23eff7116dead7e70f52673519604efa15a2743939034cb2fccd1c4672
- SHA512
  
  bed133ef77d0dfda0afbe14e27ea851437954672aef9f988ecb49afbe8aa55469ebd34d38355a423fd6f74e71a79d2cda99f602b0ab294c28c480fb3d444e418
- SSDEEP
  
  6144:3qYMM+1vwaJL3FF97TUjlBUdkfBLBIZDya0LUQiTa+T:3qYMM+1oe3zsBUd2K4LUQi7
Score

10^/10

vidar 2234cb18bdcd93ea6f4e5f1473025a81 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

vidar2234cb18bdcd93ea6f4e5f1473025a81stealer

behavioral2

vidar2234cb18bdcd93ea6f4e5f1473025a81stealer