vidar

General

Target

64041729aa4ed58f00c808e0e7c360db2bda1adbb427cd0cbf9b1840892c249f_JC.zip
Size

1.0MB
Sample

231011-gvcdpsfh34
MD5

f7a506e2df7067a496f7afcaf2bc0a7d
SHA1

8f857c466b2930d2332bac3cf04d098b478dc962
SHA256

64041729aa4ed58f00c808e0e7c360db2bda1adbb427cd0cbf9b1840892c249f
SHA512

c0dbdbe95cfeb3b3ce6b229f595606af202e3ec7ff842bf7c48dfaa4572bb57825a6435415d52a345da6dca48eb083ccb63d0c8bcc139663d9e73d672fc0f4f7
SSDEEP

6144:r2eKY4A3PFM9RkY3uNBqox2+/jjMXGL9yvuMzrQ:r2eKmPFM99+lx2+/jjAuMY

Score

10^/10

Malware Config

Extracted

Family

vidar

Version

5.8

Botnet

0c81606f55c54f1e773bed4a6f21b229

C2

https://steamcommunity.com/profiles/76561199555780195

https://t.me/solonichat

Attributes

profile_id_v2
0c81606f55c54f1e773bed4a6f21b229
user_agent
Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Safari/537.36

Targets

- Target
  
  photo-28-09-2023_292.scr
- Size
  
  650.4MB
- MD5
  
  bd43d96355bafe33467cf24d65020d17
- SHA1
  
  47b034e53266a92ff0b6247333affa7bff4e4556
- SHA256
  
  9907bb34a37f93e339cb3f23a57ced33c5e31380031cbb7f65dde361ff6c9c56
- SHA512
  
  4ce4df1881c501221725adad5b836beb786a8ff6364e034e34d5ac86a9bd0dd0096cb35594d4d3824586b90db55c5fd8fb8c67d5e153289a7f8487ff92d75f14
- SSDEEP
  
  6144:ZEUl3um/xvyAPPDS9RkY3uRBqMR2+/FPMhG8W8al1B:ZFNr/xPPDS99+9R2+/FkW8at
Score

10^/10

vidar 0c81606f55c54f1e773bed4a6f21b229 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1

T1112

Subvert Trust Controls

1

T1553

Install Root Certificate

1

T1553.004

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2