General
-
Target
Chase_Bank_Statement0143121402341.exe
-
Size
46.4MB
-
Sample
230511-te7wwsgh51
-
MD5
3b5b953161b67511571722028157e57b
-
SHA1
1850bc9b1e5b15318c248f12c8e306a304971c10
-
SHA256
b5d9d38d8285c25ea78f51e8ca4f733a32288304877008200f4fe387d6f274c9
-
SHA512
08a9fca3864faba290998d700fe29ed2adbe55e7418d605fb017ea030b476b88429a0c5f77867b7504cc0e7f51af9538112e98796c7033fd96a63aaa41946d35
-
SSDEEP
786432:7ZHQRRSZ5s9OYQ9huQDAwpu4MGxoxgoACrN4CDKsI9b:7ZHX69WhuQDAwsGKGc+CDPOb
Malware Config
Extracted
vidar
3.7
48f6d53e98d1b177faa2fe8324c7cc8b
https://steamcommunity.com/profiles/76561199501059503
https://t.me/mastersbots
-
profile_id_v2
48f6d53e98d1b177faa2fe8324c7cc8b
-
user_agent
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/112.0
Targets
-
-
Target
Chase_Bank_Statement0143121402341.exe
-
Size
46.4MB
-
MD5
3b5b953161b67511571722028157e57b
-
SHA1
1850bc9b1e5b15318c248f12c8e306a304971c10
-
SHA256
b5d9d38d8285c25ea78f51e8ca4f733a32288304877008200f4fe387d6f274c9
-
SHA512
08a9fca3864faba290998d700fe29ed2adbe55e7418d605fb017ea030b476b88429a0c5f77867b7504cc0e7f51af9538112e98796c7033fd96a63aaa41946d35
-
SSDEEP
786432:7ZHQRRSZ5s9OYQ9huQDAwpu4MGxoxgoACrN4CDKsI9b:7ZHX69WhuQDAwsGKGc+CDPOb
Score10/10-
Vidar
Vidar is an infostealer based on Arkei stealer.
-
Executes dropped EXE
-