vidar | 28a584623a187c4c6fae074643fb7b0de637b038cc74b1fca82d20681c642cb0 | Triage

Submit
Reports

Overview

overview

Static

static

3

6e54d6c542...73.exe

windows7-x64

6e54d6c542...73.exe

windows10-2004-x64

Sharing

General

Target

6e54d6c542cd34a2918fba22b0d74173
Size

689KB
Sample

231222-fqdkjaaeg2
MD5

6e54d6c542cd34a2918fba22b0d74173
SHA1

fb5cec4336f9278f1d60f73a2f70c6153e32394e
SHA256

28a584623a187c4c6fae074643fb7b0de637b038cc74b1fca82d20681c642cb0
SHA512

488807efd68fc6a57c441a5ccefe8e2af7eadd3f9e3c010231ca09dfd78f3fddd48624c40b68e7135fba268b05c6447929639740cc97df657f87a9b520badd3f
SSDEEP

12288:cq3VfcVteeIqn3tc0FII+Q70jVPtnbhHA9V7eOm/NuR89bDkj7Gnf:/Yt7i0FII370jZtbhgjwFu2bm6n

Score

10^/10

vidar 706 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6e54d6c542cd34a2918fba22b0d74173.exe

Resource

win7-20231215-en

vidar 706 stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

6e54d6c542cd34a2918fba22b0d74173.exe

Resource

win10v2004-20231215-en

vidar 706 stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

40.4

Botnet

706

C2

https://romkaxarit.tumblr.com/

Attributes

profile_id
706

Targets

- Target
  
  6e54d6c542cd34a2918fba22b0d74173
- Size
  
  689KB
- MD5
  
  6e54d6c542cd34a2918fba22b0d74173
- SHA1
  
  fb5cec4336f9278f1d60f73a2f70c6153e32394e
- SHA256
  
  28a584623a187c4c6fae074643fb7b0de637b038cc74b1fca82d20681c642cb0
- SHA512
  
  488807efd68fc6a57c441a5ccefe8e2af7eadd3f9e3c010231ca09dfd78f3fddd48624c40b68e7135fba268b05c6447929639740cc97df657f87a9b520badd3f
- SSDEEP
  
  12288:cq3VfcVteeIqn3tc0FII+Q70jVPtnbhHA9V7eOm/NuR89bDkj7Gnf:/Yt7i0FII370jZtbhgjwFu2bm6n
Score

10^/10

vidar 706 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

vidar706stealer

behavioral2

vidar706stealer

© 2018-2024

Terms | Privacy