Overview

overview

10

Static

static

10

776-267-0x...ry.exe

windows7-x64

776-267-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    776-267-0x0000000000400000-0x0000000000B28000-memory.dmp

  • Size

    7.2MB

  • MD5

    02101ec8e68a604bbb76a1b2715ed90a

  • SHA1

    8d79424ca29be2edfed61a9d771b9d0b1939dec0

  • SHA256

    268b83d6bb8cfff12ba7fb5819185cb461bb59a55bc6d5f87c124bb4fdcf4eb2

  • SHA512

    86b01b0d539bd582d3e38c62decab5589e0b147ddf64e83acd02bd3efc46022ad06dd0a1e588e5748677134c745e50e909bdcd5654049c4fa2f90f694e11d11a

  • SSDEEP

    196608:KUwmwRS6RxycpKS++I1TEerxiC0eNZrHTYzK4O7NADtV6v+:KUwmwRS6R7pP+vCerR0erzTf7

Score
10/10
e100c2b9c85dc9adbd913bfc4846b201vidar

Malware Config

Extracted

Family

vidar

Version

3.7

Botnet

e100c2b9c85dc9adbd913bfc4846b201

C2

https://steamcommunity.com/profiles/76561199501059503

https://t.me/mastersbots
Attributes
  • profile_id_v2

    e100c2b9c85dc9adbd913bfc4846b201

  • user_agent

    Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/112.0

Signatures

  • Vidar family
    vidar
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 776-267-0x0000000000400000-0x0000000000B28000-memory.dmp
    .exe windows x86


    Headers

    Sections