Overview

overview

10

Static

static

3

extractdata.exe

windows7-x64

10

extractdata.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    extractdata.exe

  • Size

    324KB

  • Sample

    230703-ef3agaee93

  • MD5

    50228ab238fbfdb0ec06fad2d83bc4f9

  • SHA1

    8a4507b0dcb0e7272c2d106e2109c7b946aadee2

  • SHA256

    5a5648007fb8ef92b6cf05fa959a6907e2d892e8579a24567e45cd8873144135

  • SHA512

    c353646a8ffe53d9582885fd28cac21397cf90fad4987875061ac0c63765db5419d2015f268a7b1ff70645ae1601eec0de6638781a4d78fc9838def3a13b621f

  • SSDEEP

    6144:kYoLtBD92OMt2ixKw84P0bOIm969P05ShZhq+nS1cnHy:kPXD92qixKw84P0bLmc9uSfhu1cHy

Score
10/10
vidar1827stealer

Malware Config

Extracted

Family

vidar

Version

55.7

Botnet

1827

C2

https://t.me/deadftx

https://www.ultimate-guitar.com/u/smbfupkuhrgc1

http://116.202.2.1:80
Attributes
  • profile_id

    1827

Targets

    • Target

      extractdata.exe

    • Size

      324KB

    • MD5

      50228ab238fbfdb0ec06fad2d83bc4f9

    • SHA1

      8a4507b0dcb0e7272c2d106e2109c7b946aadee2

    • SHA256

      5a5648007fb8ef92b6cf05fa959a6907e2d892e8579a24567e45cd8873144135

    • SHA512

      c353646a8ffe53d9582885fd28cac21397cf90fad4987875061ac0c63765db5419d2015f268a7b1ff70645ae1601eec0de6638781a4d78fc9838def3a13b621f

    • SSDEEP

      6144:kYoLtBD92OMt2ixKw84P0bOIm969P05ShZhq+nS1cnHy:kPXD92qixKw84P0bLmc9uSfhu1cHy

    Score
    10/10
    vidar1827stealer

    • Vidar

      Vidar is an infostealer based on Arkei stealer.

      stealervidar
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks