Overview

overview

10

Static

static

10

2188-3-0x0...ry.exe

windows7-x64

1

2188-3-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2188-3-0x0000000000400000-0x00000000007E7000-memory.dmp

  • Size

    3.9MB

  • MD5

    9869090c1b778ffe18877131fdfc4fda

  • SHA1

    a0e0d0519c77703163a3c757ccd529c1b06d73f6

  • SHA256

    658a8c19e8bc6bee9f131e19173910d71762bf24f8ce39b8eecd40ad07234ca3

  • SHA512

    dae3fa8056e021802ae499067c24ffa2d0a6260c35d35a957b2cbadc67e83eddefe3d562fec5ebcf5f7392aa18a76d460bac306d54e3a2a549924ee678bda8de

  • SSDEEP

    6144:Rbe2Qqw3tylpe5pXj1ISI4kWuY7v3BdhZFhqaPR/zhFyaU:O9y7e7myT37hZFh1R/

Score
10/10
5a1fadccb27cfce506dba962fc85426dvidar

Malware Config

Extracted

Family

vidar

Version

6

Botnet

5a1fadccb27cfce506dba962fc85426d

C2

https://steamcommunity.com/profiles/76561199560322242

https://t.me/cahalgo
Attributes
  • profile_id_v2

    5a1fadccb27cfce506dba962fc85426d

  • user_agent

    Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 uacq

Signatures

  • Vidar family
    vidar
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2188-3-0x0000000000400000-0x00000000007E7000-memory.dmp
    .exe windows:5 windows x86


    Headers

    Sections