Overview

overview

10

Static

static

10

344-3-0x00...ry.exe

windows7-x64

10

344-3-0x00...ry.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    344-3-0x0000000000400000-0x0000000002ACD000-memory.dmp

  • Size

    38.8MB

  • Sample

    231201-lwzb3sgg78

  • MD5

    1f98d65d9ef959433fee6fc4baf1f478

  • SHA1

    8f61288f045306414c3b104d62756cba64b70686

  • SHA256

    2eeb787dff08a3e0cd883033afa16321d0c4b9fb29fd2fe20eb6f133f045932d

  • SHA512

    fce1d53f5d0ccff862ba20b25b6bc7ca3a596a1e9ae165b4310d4b0ba70340e4742886c51c4facfba930bceec2055f2fa621f2f0fa2af39c27cfcd1ee2bf7b0d

  • SSDEEP

    3072:ffysv34+VEjY9c5WuSIfSJKTuz1F/nMR8yPUxcrmnUlnrnTfmJ/qTsn8qqVnC2ed:ffyKE89+WyPTuz70R8yTnrj7Qh/EBjX

Score
10/10
vidar52d67d34ad338b1aab9d89c0da5a59b1stealer

Malware Config

Extracted

Family

vidar

Version

6.7

Botnet

52d67d34ad338b1aab9d89c0da5a59b1

C2

https://t.me/s4p0g

https://steamcommunity.com/profiles/76561199575355834
Attributes
  • profile_id_v2

    52d67d34ad338b1aab9d89c0da5a59b1

Targets

    • Target

      344-3-0x0000000000400000-0x0000000002ACD000-memory.dmp

    • Size

      38.8MB

    • MD5

      1f98d65d9ef959433fee6fc4baf1f478

    • SHA1

      8f61288f045306414c3b104d62756cba64b70686

    • SHA256

      2eeb787dff08a3e0cd883033afa16321d0c4b9fb29fd2fe20eb6f133f045932d

    • SHA512

      fce1d53f5d0ccff862ba20b25b6bc7ca3a596a1e9ae165b4310d4b0ba70340e4742886c51c4facfba930bceec2055f2fa621f2f0fa2af39c27cfcd1ee2bf7b0d

    • SSDEEP

      3072:ffysv34+VEjY9c5WuSIfSJKTuz1F/nMR8yPUxcrmnUlnrnTfmJ/qTsn8qqVnC2ed:ffyKE89+WyPTuz70R8yTnrj7Qh/EBjX

    Score
    10/10
    vidarstealer

    • Vidar

      Vidar is an infostealer based on Arkei stealer.

      stealervidar
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks