Overview

overview

10

Static

static

10

592-56-0x0...ry.exe

windows7-x64

1

592-56-0x0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    592-56-0x0000000000400000-0x0000000000703000-memory.dmp

  • Size

    3.0MB

  • MD5

    12984d67fc0d315b3c5f1007d2935291

  • SHA1

    72866e5c74ed454d0be761178b26ca0acd6a655d

  • SHA256

    5d2cd6edcd926118a838579b9e41d94c57b0eb950e34db98dea7000de892e67f

  • SHA512

    547bf3caf56c618b4a19a92b8335ee579fc54d6361432b83727f358dbdddbd0a2df94fa1717abbbf8373917336c735dc8cc58a76d36176b4b75540180285284e

  • SSDEEP

    6144:MmLEm87VHIUvOciQyMvgaw0ZYkFY1ckJ+HFh+PqtRlWksaMt:rLEm87CAiawAYaY1ckJ+HKPqFNsf

Score
10/10
fd01ae8f24cf23951971ce9b76d2c037vidar

Malware Config

Extracted

Family

vidar

Version

3.7

Botnet

fd01ae8f24cf23951971ce9b76d2c037

C2

https://steamcommunity.com/profiles/76561199501059503

https://t.me/mastersbots
Attributes
  • profile_id_v2

    fd01ae8f24cf23951971ce9b76d2c037

  • user_agent

    Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/112.0

Signatures

  • Vidar family
    vidar
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 592-56-0x0000000000400000-0x0000000000703000-memory.dmp
    .exe windows x86


    Headers

    Sections