Overview

overview

10

Static

static

10

456-108-0x...ry.exe

windows7-x64

1

456-108-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    456-108-0x0000000000400000-0x0000000000465000-memory.dmp

  • Size

    404KB

  • MD5

    439bfea0b6ec303878cf9a75850094a8

  • SHA1

    f1ccba07e4719511f482ae89f317490d5519a4dc

  • SHA256

    181e22a9fdeaef2517b7a6792d6289988af3ac589f6b217f50066e446275b6eb

  • SHA512

    7acba003280118556c0fbd00a47d0daacc3c569dddb8b3209d61ed7d10810694ad4547088b5d7f2d7198ed400b8dd198291c31380b7ac60e26bae05c4e1787ad

  • SSDEEP

    6144:zA+1e4b30YI1zA7I4ucur1srMPOZcFuIR+/hx4eXD3Pl:LXbkSlNrmOZcFu2+JXDN

Score
10/10
b4fc4cd2d76417bf461814b9d989fcdbvidar

Malware Config

Extracted

Family

vidar

Version

5.9

Botnet

b4fc4cd2d76417bf461814b9d989fcdb

C2

https://steamcommunity.com/profiles/76561199557479327

https://t.me/grizmons
Attributes
  • profile_id_v2

    b4fc4cd2d76417bf461814b9d989fcdb

  • user_agent

    Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 OPR/104.0.0.0

Signatures

  • Vidar family
    vidar
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 456-108-0x0000000000400000-0x0000000000465000-memory.dmp
    .exe windows:5 windows x86


    Headers

    Sections