vidar | f8c8cb16e0e75181073403eb6a31bfd215d9b26721ecb1c02d949b0690a3c102 | Triage

Sharing

General

Target

d702cc9a4a3d793d954bfaf11005ed16_mafia_JC.exe
Size

772KB
Sample

230829-ws1e3see74
MD5

d702cc9a4a3d793d954bfaf11005ed16
SHA1

38e544f821012c55dd7d5f5de400037d5d3b2eec
SHA256

f8c8cb16e0e75181073403eb6a31bfd215d9b26721ecb1c02d949b0690a3c102
SHA512

6afbf8aec158b17eaf437134ddc38ce3cafc6a228d01d95e5195822b9802c4e9c6a3b3055249dc1c2248e78046b49e4d00f2ccc58d2a3f2152fc5fdebda4e91d
SSDEEP

24576:4Ru16WYdRNDl0Et8uEXE6dl5H92r5HpqNY:YVNDl0Et8uEXE6ds1Hpq

Score

10^/10

vidar 5604259a36be2b149fb196a157b23f6a

Malware Config

Extracted

Family

vidar

Version

4.9

Botnet

5604259a36be2b149fb196a157b23f6a

C2

https://t.me/dastantim

https://steamcommunity.com/profiles/76561199529242058

Attributes

profile_id_v2
5604259a36be2b149fb196a157b23f6a
user_agent
Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.93 Safari/537.36 Vivaldi/3.7

Targets

- Target
  
  d702cc9a4a3d793d954bfaf11005ed16_mafia_JC.exe
- Size
  
  772KB
- MD5
  
  d702cc9a4a3d793d954bfaf11005ed16
- SHA1
  
  38e544f821012c55dd7d5f5de400037d5d3b2eec
- SHA256
  
  f8c8cb16e0e75181073403eb6a31bfd215d9b26721ecb1c02d949b0690a3c102
- SHA512
  
  6afbf8aec158b17eaf437134ddc38ce3cafc6a228d01d95e5195822b9802c4e9c6a3b3055249dc1c2248e78046b49e4d00f2ccc58d2a3f2152fc5fdebda4e91d
- SSDEEP
  
  24576:4Ru16WYdRNDl0Et8uEXE6dl5H92r5HpqNY:YVNDl0Et8uEXE6ds1Hpq
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

5604259a36be2b149fb196a157b23f6avidar

behavioral1

behavioral2