vidar | 43831ccaf5a6ec4fca026e2ec678e3b6cadf70eaa5f8c8e876b3fa188c85273a | Triage

Sharing

General

Target

5a96b2624f57f2c09e655b35c377f989
Size

670KB
Sample

231219-tq884acfdr
MD5

5a96b2624f57f2c09e655b35c377f989
SHA1

d7bf1e35353f7f6f00b8f1ba23a48ceb2d64c710
SHA256

43831ccaf5a6ec4fca026e2ec678e3b6cadf70eaa5f8c8e876b3fa188c85273a
SHA512

8138b48ff2a1b239b6d079daf65975df5d2117d8c3a6071eaed7acef1f31136998c59ee200d42ff68fa9cf4f1afbe4a5e5fc8181945b7f67d9e88a8110b9251b
SSDEEP

12288:BJwA2DUEO2JrIsJc8y1pqvMeI4O6AEnTwDV+VQZyyYFrZf7zqXfRcDOFursBbH:sDjJ7Jl5MeI4hlaV+VQZBTXCgfF

Score

10^/10

vidar 399 stealer

Malware Config

Extracted

Family

vidar

Version

41.2

Botnet

399

C2

https://mas.to/@serg4325

Attributes

profile_id
399

Targets

- Target
  
  5a96b2624f57f2c09e655b35c377f989
- Size
  
  670KB
- MD5
  
  5a96b2624f57f2c09e655b35c377f989
- SHA1
  
  d7bf1e35353f7f6f00b8f1ba23a48ceb2d64c710
- SHA256
  
  43831ccaf5a6ec4fca026e2ec678e3b6cadf70eaa5f8c8e876b3fa188c85273a
- SHA512
  
  8138b48ff2a1b239b6d079daf65975df5d2117d8c3a6071eaed7acef1f31136998c59ee200d42ff68fa9cf4f1afbe4a5e5fc8181945b7f67d9e88a8110b9251b
- SSDEEP
  
  12288:BJwA2DUEO2JrIsJc8y1pqvMeI4O6AEnTwDV+VQZyyYFrZf7zqXfRcDOFursBbH:sDjJ7Jl5MeI4hlaV+VQZBTXCgfF
Score

10^/10

vidar 399 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

vidar399stealer

behavioral2