vidar | 59518d589e912210bc357c0394cf5a887ccaa9cee1c8be71712ab141547b21b6 | Triage

Submit
Reports

Overview

overview

Static

static

3

fd155be605...04.exe

windows7-x64

fd155be605...04.exe

windows10-2004-x64

Sharing

General

Target

fd155be605282adfc048429fb95c4d04
Size

873KB
Sample

231220-we7l8sbfhn
MD5

fd155be605282adfc048429fb95c4d04
SHA1

9587fd967ea463deb1faf07bdce05394fce7a151
SHA256

59518d589e912210bc357c0394cf5a887ccaa9cee1c8be71712ab141547b21b6
SHA512

9e9f22d84a8fa66fe4a37dedf5c6276222f816920debdc2c9888cc235ce36f07e28b4f7b17efcb45892ba6bbae6e7e9679a25cb6f079f3b67892c471d3c61550
SSDEEP

12288:cLxhqCrfU7SAVbjw5TkS/DhFYb2+56uiLuxMcSAZ1TjVpYX6fAZiQwszuVtIcx:c1hHrg6/DjuieqAv9QizszutBx

Score

10^/10

vidar 517 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

fd155be605282adfc048429fb95c4d04.exe

Resource

win7-20231215-en

vidar 517 stealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

fd155be605282adfc048429fb95c4d04.exe

Resource

win10v2004-20231215-en

vidar 517 stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

41.2

Botnet

517

C2

https://mas.to/@serg4325

Attributes

profile_id
517

Targets

- Target
  
  fd155be605282adfc048429fb95c4d04
- Size
  
  873KB
- MD5
  
  fd155be605282adfc048429fb95c4d04
- SHA1
  
  9587fd967ea463deb1faf07bdce05394fce7a151
- SHA256
  
  59518d589e912210bc357c0394cf5a887ccaa9cee1c8be71712ab141547b21b6
- SHA512
  
  9e9f22d84a8fa66fe4a37dedf5c6276222f816920debdc2c9888cc235ce36f07e28b4f7b17efcb45892ba6bbae6e7e9679a25cb6f079f3b67892c471d3c61550
- SSDEEP
  
  12288:cLxhqCrfU7SAVbjw5TkS/DhFYb2+56uiLuxMcSAZ1TjVpYX6fAZiQwszuVtIcx:c1hHrg6/DjuieqAv9QizszutBx
Score

10^/10

vidar 517 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

vidar517stealer

behavioral2

vidar517stealer

© 2018-2024

Terms | Privacy