Overview

overview

10

Static

static

3

dc227245ac...8f.exe

windows7-x64

10

dc227245ac...8f.exe

windows10-2004-x64

10

Resubmissions

04-05-2023 09:40

230504-lnggasbd33 10

04-05-2023 09:39

230504-lmtp8sdb9v 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dc227245accd1f5cf25ff560ab7af3de04971aaac882cc06bccfb7a6fa652b8f

  • Size

    325KB

  • Sample

    230504-lmtp8sdb9v

  • MD5

    ac67fb04e5b755e1db8b66e82e4b38ba

  • SHA1

    87ad818bf15de83217cb570d7cc46a5637c86122

  • SHA256

    dc227245accd1f5cf25ff560ab7af3de04971aaac882cc06bccfb7a6fa652b8f

  • SHA512

    e3664eec6cda3616462bde1afe27c5f40fcab56ef9a0dc16545a9f03bdae1157afbddbaafa0f39e2544864c3d2a259a0efd34c420221921ba640658c26ac6a99

  • SSDEEP

    6144:/qJJGLlmPiVDIOo2u3xpzb9y6uQdEVtTiWpTJeNm8z0Um0HJ:CJ4pmPi1I7nhRZyFeQTp/am0p

Score
10/10
vidar1672stealer

Malware Config

Extracted

Family

vidar

Version

55.7

Botnet

1672

C2

https://t.me/deadftx

https://www.ultimate-guitar.com/u/smbfupkuhrgc1

http://116.202.2.1:80
Attributes
  • profile_id

    1672

Targets

    • Target

      dc227245accd1f5cf25ff560ab7af3de04971aaac882cc06bccfb7a6fa652b8f

    • Size

      325KB

    • MD5

      ac67fb04e5b755e1db8b66e82e4b38ba

    • SHA1

      87ad818bf15de83217cb570d7cc46a5637c86122

    • SHA256

      dc227245accd1f5cf25ff560ab7af3de04971aaac882cc06bccfb7a6fa652b8f

    • SHA512

      e3664eec6cda3616462bde1afe27c5f40fcab56ef9a0dc16545a9f03bdae1157afbddbaafa0f39e2544864c3d2a259a0efd34c420221921ba640658c26ac6a99

    • SSDEEP

      6144:/qJJGLlmPiVDIOo2u3xpzb9y6uQdEVtTiWpTJeNm8z0Um0HJ:CJ4pmPi1I7nhRZyFeQTp/am0p

    Score
    10/10
    vidar1672stealer

    • Vidar

      Vidar is an infostealer based on Arkei stealer.

      stealervidar
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks