Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

1004c6317f...06.exe

windows7-x64

10

1004c6317f...06.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1004c6317f143049116b000a3eadeebce5d4f9d027e639873e8d06b32254ec06.bin

  • Size

    408KB

  • Sample

    230506-zaxs1sbh97

  • MD5

    bb45c1ebd56e6fedab9427d43dfd0aa5

  • SHA1

    d38be92272a5662f74590b72008779cb30b3a266

  • SHA256

    1004c6317f143049116b000a3eadeebce5d4f9d027e639873e8d06b32254ec06

  • SHA512

    5de1cdde2283840455be16f83aa195d8eff1af9b53bc0503f9af3debe196f5b26b702ecbbe0c0fdee4feff2c5d68796bead4702289df1b930b4521e4a1e1cfa6

  • SSDEEP

    6144:7tylPCvzEnK/u4jCIhXyYVQRX11aQVNJ8z6NAhoglN6edNo3J1:pylPCvfyYVaXjPDKzQJkdNo

Score
10/10
vidar78489afd9d9a4747beb445e5fb5b9c96stealer

Malware Config

Extracted

Family

vidar

Version

3.6

Botnet

78489afd9d9a4747beb445e5fb5b9c96

C2

https://steamcommunity.com/profiles/76561199499188534

https://t.me/nutalse
Attributes
  • profile_id_v2

    78489afd9d9a4747beb445e5fb5b9c96

  • user_agent

    Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36

Targets

    • Target

      1004c6317f143049116b000a3eadeebce5d4f9d027e639873e8d06b32254ec06.bin

    • Size

      408KB

    • MD5

      bb45c1ebd56e6fedab9427d43dfd0aa5

    • SHA1

      d38be92272a5662f74590b72008779cb30b3a266

    • SHA256

      1004c6317f143049116b000a3eadeebce5d4f9d027e639873e8d06b32254ec06

    • SHA512

      5de1cdde2283840455be16f83aa195d8eff1af9b53bc0503f9af3debe196f5b26b702ecbbe0c0fdee4feff2c5d68796bead4702289df1b930b4521e4a1e1cfa6

    • SSDEEP

      6144:7tylPCvzEnK/u4jCIhXyYVQRX11aQVNJ8z6NAhoglN6edNo3J1:pylPCvfyYVaXjPDKzQJkdNo

    Score
    10/10
    vidar78489afd9d9a4747beb445e5fb5b9c96stealer

    • Vidar

      Vidar is an infostealer based on Arkei stealer.

      stealervidar
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks