Overview

overview

10

Static

static

10

aeec682b33...JC.exe

windows7-x64

10

aeec682b33...JC.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aeec682b33782ee0d2dc72b82ba61ade_mafia_JC.exe

  • Size

    788KB

  • Sample

    230809-wypwjagb8t

  • MD5

    aeec682b33782ee0d2dc72b82ba61ade

  • SHA1

    2d25d390aa5f950c4d6dd9f2a4b557b8197e94bd

  • SHA256

    2fddcff3c5f83d226c9ab15e3196443f2f3067a1848cd31bb61a52e7447136fd

  • SHA512

    53b0100bc83804848af10bbc31986245f63674df1e55e07ecc290f8b8856a6e0b0692e700341024e1529d297eac6918b1b8147c7ff5a1833219e4174e00e1d1e

  • SSDEEP

    12288:HwPa0OH9rWyBw+qtoGqU17NUIRpgKNgWw5wcYSGa6:HwPa069rWyBw+DcUIfNgJwNfa

Score
10/10
vidar408stealer

Malware Config

Extracted

Family

vidar

Version

1.8

Botnet

408

C2

https://t.me/year2023start

https://steamcommunity.com/profiles/76561199467421923

http://65.108.93.119:80
Attributes
  • profile_id

    408

Targets

    • Target

      aeec682b33782ee0d2dc72b82ba61ade_mafia_JC.exe

    • Size

      788KB

    • MD5

      aeec682b33782ee0d2dc72b82ba61ade

    • SHA1

      2d25d390aa5f950c4d6dd9f2a4b557b8197e94bd

    • SHA256

      2fddcff3c5f83d226c9ab15e3196443f2f3067a1848cd31bb61a52e7447136fd

    • SHA512

      53b0100bc83804848af10bbc31986245f63674df1e55e07ecc290f8b8856a6e0b0692e700341024e1529d297eac6918b1b8147c7ff5a1833219e4174e00e1d1e

    • SSDEEP

      12288:HwPa0OH9rWyBw+qtoGqU17NUIRpgKNgWw5wcYSGa6:HwPa069rWyBw+DcUIfNgJwNfa

    Score
    10/10
    vidar408stealer

    • Vidar

      Vidar is an infostealer based on Arkei stealer.

      stealervidar

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks